Purple SSO
Purple Platform
Purple SSO (Single Sign-On) allows you to connect the Purple platform to your own company SSO, so your team doesn't have to log in to Purple separately. This simplifies access by using your existing company credentials, improves security and reduces the need to manage multiple passwords. Once enabled, users can log in to Purple through your company's SSO portal, streamlining the authentication process. Follow the steps below to set up SSO for your organisation.
Check your company's SSO and make sure it allows OpenID configuration. If your organisation's SSO doesn't allow OpenID configuration, please open a change request in the Purple Helpdesk so we can see if we can connect your SSO and give you a quote.
The Purple SSO can only be set up by the Purple Product team. In order to let them perform the setup, please open a support ticket and deliver the following URLs:
- Email-domain(s) of your company
- Sub-domain for testing
- client_id
- client_secret
- URL to OpenID-Configuration (.well-known/openid-configuration)
or
- authorization_url
- token_url
- user_info_url
- issuer
- jwks_url
- default scopes
Once the SSO has been set up by the Purple Product Team, you will receive a redirect URL that you will need to configure in your IdP system to enable integration with our systems.
We can only activate SSO for an entire domain. This means that if you want to test SSO first before activating it for all users in your company, this preliminary test can be carried out via a separate domain/subdomain.
After enabling Purple SSO,
- Your team will be prompted to your corporate SSO the first time they access the Purple Platform in an unlogged state.
- Once logged in to SSO, your team will have access to all Purple components without having to enter the password to the Purple platform separately.
- How long your users (team) stay logged in (session duration), is now defined in your SSO.
- We don't recommend using Purple's multi-factor authentication in addition to the Purple SSO, as this may cause confusion for your team and is not necessary from a security point of view.