Single sign-on allows you to log in to Krisp using your company credentials. Krisp's single sign-on (SSO) is based on SAML 2.0.
Krisp acts as the Service Provider (SP) and offers automatic user provisioning. The team-member doesn't need to register on Krisp preliminarily. Once Krisp receives a SAML response from the Identity Provider (IdP), it checks if a user with the received email address is already present in the Krisp team account. If the user does not exist, Krisp creates a user automatically with that email and assigns it to an available unassigned seat in the team. If there is no unassigned seat in the team account at the time of the first sign in of the user, the sign-in attempt will be rejected.
Since Krisp implements the generic SAML protocol, it is compatible with a wide range of Identity provider services such as Okta, Microsoft Azure, and any other service that is compatible with SAML 2.0.
- Krisp Enterprise plan
- Admin privileges for the Krisp Team
General Instructions For The Admins
Go to your Krisp team account >>> Settings tab. Enable the SSO.
If you check the "Enforce SSO" checkbox, your team-members will have only the SSO as an option to get inside their accounts.
To have the SSO for your account:
- Configure your IdP to send the email address of your team member to Krisp as an identifier for the account.
- In your Krisp Team Dashboard, where the SSO is enabled, click on the Configure button and enter the information from your IdP.
- Identity Provider Single Sign-On URL
- Identity Provider Issuer
- Audience URI
- X-509 certificate
Once configured, you and your team-members can sign in with SSO using your team slug and the company credentials for the IdP. Note that your team slug will be your company domain name in case you create your team with your corporate email address and if that very slug is not being already used. Otherwise, it will be generated randomly.
If you are interested in having SSO option applied to your Krisp team account, please contact firstname.lastname@example.org.