LiquidPlanner provides a centrally managed Single Sign-On (SSO) configuration that integrates LiquidPlanner with your corporate SSO solution. This feature is available in Enterprise edition workspaces.
What is SSO?
SSO is a session/user authentication process that permits a user to enter one name and password in order to access multiple applications. The process authenticates the user for all the applications they have been given rights to and eliminates further prompts when they switch applications during a particular session.
How does it work with LiquidPlanner?
LiquidPlanner supports SAML 2.0 (Security Assertion Markup Language), which allows for the use of SSO, using enterprise identity providers such as Active Directory and LDAP. Enabling Single Sign-On via SAML 2.0 means that user authentication is handled entirely outside of LiquidPlanner.
How do I set it up?
Follow the instructions in this article to set up SSO for your workspace: Configuring SSO in LiquidPlanner
If your organization uses Active Directory, you’ll need to configure a self-hosted ADFS server to act as a SAML 2.0 identity provider (IDP) before configuring SSO in LiquidPlanner. Begin with the instructions in this article: Configuring SSO with ADFS
If your organization uses Okta, you’ll need to configure Okta to act as a SAML 2.0 identity provider (IDP). For full instructions, visit Okta’s documentation: How to Configure SAML 2.0 for LiquidPlanner
Are there any limitations?
In the interest of security, please note that workspace members who have SSO enabled will not be able to:
- Use the API
- Use the LiquidPlanner mobile app
Who can use it?
SSO is not available for dashboard guests.
If you have questions about the above items or need to use them, please contact firstname.lastname@example.org.