Should I create a Single Sign-on Endpoint at the Site or Account level?

Updated Jun 03, 2019

When you are deciding on whether you should create a Single Sign-on (SSO) endpoint at the account level or the site level, the following questions will help you decide.

Do you want Admins/Authors to log into the Admin area via SSO?

Do you also want end users (e.g. customers/employees) to view the published ScreenSteps site via Single Sign-on?

Is the site you want the endpoint for your default ScreenSteps site?

Click here if you're not sure what your default ScreenSteps site is.

Are you using host_mapping for the default site?

In other words, is your ScreenSteps account URL something like company.screenstepslive.com but your end users view the published site at something like help.company.com?

Create a Single Sign-on endpoint at the account level AND create a Single Sign-on endpoint at the site level

Creating an SSO endpoint at the account level will allow your Admins/Authors to authenticate to the Admin area of ScreenSteps using Single Sign-on.

But since you are using host_mapping, your endpoint will not automatically apply to the published site. So you will need to go through the process of creating a Single Sign-on endpoint at the site level as well.

Create a Single Sign-on endpoint at the account level

Creating an SSO endpoint at the account level will allow your Admins/Authors to authenticate to the Admin area of ScreenSteps using Single Sign-on AND will require your end users (i.e. customers/employees) to log in via Single Sign-on.

Create a Single Sign-on endpoint at the account level AND create at the site level

Creating an SSO endpoint at the account level will require your Admins/Authors to log into the Admin area via Single Sign-on; however, since you also want to use Single Sign-on for a site that is NOT your default account, you will need to create an additional end point at the site level.

Create a Single Sign-on endpoint at the account level AND create another site for publishing content

Creating an SSO endpoint at the account level will allow your Admins/Authors to authenticate to the Admin area of ScreenSteps using Single Sign-on.

But since you do not want end users to view your ScreenSteps published site via Single Sign-on, you will need to create a different site specifically for that audience. The Single Sign-on endpoint at the account level will not affect the viewing permissions for that new site.

Create a Single Sign-on endpoint at the site level

Creating a Single Sign-on endpoint at the site level will allow you to authenticate end users (e.g. customers or employees) to your ScreenSteps knowledge base, but it will NOT require your Admins/Editors to use Single Sign-on to log into the Admin area of your ScreenSteps account.

Still Need Help?

Contact Us