Single sign-on allows you to log in to Krisp using your company credentials. Krisp's single sign-on (SSO) is based on SAML 2.0.
Krisp acts as the Service Provider (SP) and offers automatic user provisioning. The team-member doesn't need to register on Krisp preliminarily. Once Krisp receives a SAML response from the Identity Provider (IdP), it checks if a user with the received email address is already present in the Krisp team account. If the user does not exist, Krisp creates a user automatically with that email and assigns it to an available unassigned seat in the team. If there is no unassigned seat in the team account at the time of the first sign in of the user, the sign-in attempt will be rejected.
Since Krisp implements the generic SAML protocol, it is compatible with a wide range of Identity provider services such as Okta, Microsoft Azure, and any other service that is compatible with SAML 2.0.
- Krisp Enterprise plan
- Admin privileges for the Krisp Team
General Instructions For The Admins
Go to your Krisp team account >>> Settings tab. Enable the SSO.
If you check the "Enforce SSO" checkbox, your team-members will have only the SSO as an option to get inside their accounts.
Now, configure your IdP to send Krisp the email as an identifier for the account.
Next, enable the SSO option in the Settings tab of Krisp Team Dashboard and configure it by entering information from your IdP.
- Identity Provider Single Sign-On URL
- Identity Provider Issuer
- Audience URI
- X-509 certificate
Once configured, you and your team-members can sign in with SSO using your team slug and the company credentials for the IdP. Note that your team slug will be your company domain name in case you create your team with your corporate email address and if that very slug is not being already used already. Otherwise, it will be generated randomly.
If you are interested in having SSO option applied on your Krisp team account, please contact email@example.com.