Single sign-on (SSO) enables Essentials and Enterprise (formerly TES) customers and their employees to securely access Handshake using the same credentials they use for their other corporate applications.
Handshake supports SAML 2.0 authentication. If your company’s identity provider (IdP) supports SAML 2.0, SSO can be enabled for your Handshake account. To get started, contact your Handshake account manager to request SSO support.
Note: After SSO is enabled, a company profile Owner or Admin must configure it in Handshake.
Premium features are for Handshake Premium accounts only. For more information, check out this resource!
Configure SSO in Handshake
1. Click on your name in the upper-right corner of any page, then select Company settings from the dropdown.
2. In the left menu, select Single Sign-On Settings, then enter the following information:
-
-
Identity Provider's Single Sign-On URL (required)
- Provided by your identity provider.
-
Identity Provider's Single Logout URL (optional)
- Provided by your identity provider.
- Identity Provider's Entity ID URI (required)
-
Name Identifier Format (optional)
- Currently, only the email address format is supported.
-
Name Identifier Attribute (optional)
- The attribute in the SAML response that contains the name identifier. This value is configured in your identity provider.
-
Identity Provider's Single Sign-On URL (required)
3. When finished, click the green Save Settings button in the lower-right corner of the page.
Logging in
Once SSO is configured, all employees are automatically directed to authenticate through the company’s identity provider when logging in to Handshake.