Login
    • Beta
    Contents x
    Single-Sign-On
    • 03 Sep 2024
    • 1 Minute to read
    • Contributors
    • Print
    • Dark
      Light
    • PDF
    Contents

    Single-Sign-On

    • Updated on 03 Sep 2024
    • 1 Minute to read
    • Contributors
    • Print
    • Dark
      Light
    • PDF
    Article summary

    SAML 2.0 Single-Sign-On 

    Xponent supports Single-Sign-On (SSO) for SAML 2.0 identity providers. Please contact Xponent Support if you are interested in enabling this for your organization. 

    Supported Types of Connections 

    • SAML 2.0 Single-Sign-On
    • IdP-Initiated Single-Sign-On
    • SP-initiated Single-Sign-On

    Xponent accepts a digital signature with SAML Assertion

    Xponent does not support any form of Single-Sign-Off 

    SAML Attributes and User Set-Up

    Xponent uses “Email” as the unique identifier ID for the SAML assertions, and we cannot use other identifiers as Xponent only holds email addresses as the globally unique identifier. When setting up an SSO for your organization, Xponent will require a list of users for the SSO.

    It is important to note that Xponent provisions accounts based on email addresses, and the email addresses are then added individually and manually.

    Single-Sign-On Login Screen

    The Xponent login screen first asks for an email address: 

    • If you are an Xponent user at an organization where Xponent manages the password, then you will be passed to a screen that asks for your Xponent password.
    • If your organization is set up for single sign-on, then you will be directed to your familiar SAML identity provider, where you will be asked to authenticate using your standard username and password.  

    The Single-Sign-On managed login flow looks like this: 

    Followed by the screen from your identity provider, which should be familiar.

    After successful authentication, Xponent will pass you through to the Xponent home page.

    Changing Your Password

    If your identity provider manages your organization's usernames and passwords, then you should be familiar with the process for resetting your password. This typically does not involve Xponent. 

    Account Provisioning 

    Xponent does not automatically provision accounts from your identity provider. Please add users in the normal way to your organization, and this will allow them to access the Journey Hub if the identity provider verifies their identity. 

    Is it helpful? React and share your comment
    What's Next
    • CSG
    • 169 Inverness Dr W
    • Suite 300
    • Englewood, CO 80112
      • © 2023 CSG Systems International, Inc. and/or its affiliates (“CSG”) , All Rights Reserved
      • CSG® is registered trademarks of CSG Systems International, Inc. All third-party trademarks, service marks, and/or product names which are referenced in this document are the property of their respective owners, and all rights therein are reserved.
      Change password!
      Changing your password will log you out immediately. Use the new password to log back in.
      Change profile
      Success!
      First name must have atleast 2 characters. Numbers and special characters are not allowed.
      Last name must have atleast 1 characters. Numbers and special characters are not allowed.
      Enter a valid email
      Enter a valid password
      Your profile has been successfully updated.
      Logout
      ESC

      Eddy AI, facilitating knowledge discovery through conversational intelligence