Introw's Internal SSO allows your team to securely access the platform through a SAML 2.0 authentication mechanism, seamlessly integrating with your company’s Single Sign-On (SSO) system. This ensures a streamlined login experience while maintaining security and compliance across your organisation.
​

Navigate to your Introw settings > Internal SSO
​
In the Internal SSO settings you can find all the necessary information to configure a SAML 2.0 connection with your Identity Provider.

The service provider is already prepared by Introw. Utilize the metadata URL to prepare your internal SAML connection. Once your identity provider is prepared, fill in the Metadata URL and Introw will finalise the connection.

You can configure the default Introw role and the relevant mapping of the personal identification properties (email, first-name, last-name, id) that are used in Introw.

To log in via Single Sign-On (SSO), team members should begin by accessing the standard Introw login page at rooms.introw.io/login and entering their email address. Upon clicking "Log in with email," Introw’s authentication system will automatically determine if the user should be redirected to the organisation's SSO provider for authentication.

When the user is authenticated through the Single-Sign-On service they are redirected back to Introw.

If the user was not yet invited to the team in Introw they are provisioned with the expected default role that was configured previously.