Setting up SSO as your login method

Justyna Janowska
3 min read
updated: Nov 8, 2019

What's SSO anyways?

Nowadays, almost every website, service or app requires a login and password to gain access. With so many passwords to remember things can get confusing. People often forget passwords so they tend to write them down, use simple ones or reuse the same for many systems. That's a security risk you don't want in an enterprise environment.

With Single Sign-on, or SSO for short, agents have a single login across all apps your team is using. It makes life easier and more secure for everyone and reduces the administrative overhead.

List of native SSO providers that LiveChat integrates with

Our Single Sign-On solution allows you to not only integrate LiveChat with your custom SAML 2.0 solution, but also use one of the native SSO integrations available out of the box. Here's the list of available SSO providers that you can find in the Agents authentication section of your LiveChat:

  1. Okta
  2. OneLogin

In addition to that, we have prepared two additional SSO integrations that are currently not listed in LiveChat's User Interface, but are available through custom SSO implementation:

  1. Auth0
  2. Azure Active Directory

For Auth0 SAML 2.0 application, we've prepared a dedicated tutorial that will guide you through the integration process – to check it out, click here.

First, configure your Identity Provider

LiveChat supports SSO via SAML 2.0 standard. We have dedicated tutorials for Okta and OneLogin, but it's also possible to integrate with other providers for as long as they support SAML 2.0.

To enable SSO authentication, you need to set a connection between LiveChat and your Identity Provider. Start by getting the following from your Identity Provider:

  1. Your SAML Single Sign-On URL (also called a login URL).
  2. An X.509 certificate which looks something like this (this one's encrypted):

x.509 certificate for sso

Note: Most Identity Providers use the same parameters, only names might be slightly different.

How to enable SSO in your LiveChat?

After you obtain the above information from your Identity Provider, copy them and log in to your LiveChat admin panel.

providing identity provider url in LiveChat

Uploading x.509 certificate in LiveChat

Fill in the issuer field

Well done, you've just enabled SSO for your team. OK, so what's next?

How will my agents know that SSO has been enabled?

After you enable SSO, your agents won't be able to login using their LiveChat password. Instead, they'll have to authenticate with their SSO credentials. We will automatically notify all agents about this change by email. Here's what the email template will look like:

email to livechat agents after enabling sso

Accessing LiveChat

Once SSO is enabled, agents log in to LiveChat by entering just their email address. It redirects them to the Identity Provider's sign-in URL, where they need to enter their SSO credentials.

Here's how agents log in to LiveChat when SSO is enabled:

Some frequently asked questions about SSO

When SSO is your chosen login method and you want to add a new agent, you'll first need to make sure they're registered with your Identity Provider. Otherwise, they won't be able to authenticate and access LiveChat.

When you enable SSO, your Identity Provider handles all aspects of authentication for your agents. It means that whatever other security features you might be using, like two-step verification or logging in with Google, will no longer be supported.

When you enable SSO, authentication is done outside LiveChat. It means that agent's passwords won't be stored in LiveChat but in your trusted SSO provider instead. Thus, the ability to reset the password with LiveChat will also be disabled. In case any of your agents forgets their password, they'll need to reset it via your trusted Identity Provider.

Was this article helpful?

Got it!

Thanks for your feedback.

Thank you!

We’re happy to help.

RELATED ARTICLES

Trusted domains

Set up trusted domains in LiveChat to avoid having your chat on other websites. Protect your LiveChat for using on domains that you don't know.

Read the article

Logging in with Google account

Check how to use Google account to log in to LiveChat. It will save you the need to remember new password and will allow you to easily access your LiveChat.

Read the article

Start using LiveChat now!

Free 14-day trial Team plan features No credit card required

Still not convinced? Discover all LiveChat features