Set up SSO (Single Sign-On) via Google, Microsoft (ActiveDirectory, Entra ID), Okta, Onelogin, or any other provider that supports SAML.
SSO provides an additional layer of security to your account, and your users won't have to remember another login. You can also use SSO with the Perdoo app for iOS or Android.
💡 Pro tip: You can add 2FA (two-factor or multi-factor authentication) through our Single Sign-On (SSO) integration. Most SSO providers (Microsoft Azure, SAML, Google, etc.) allow you to enforce 2FA. Once this is enforced, 2FA will also be a requirement to log in to Perdoo.
Set up SSO
👉 Click here for setting up SSO with Microsoft ActiveDirectory / Entra ID.
Check the box for Enabled.
Fill in the details below.
Hit Save.
Enabled | Check (to enable SSO) or uncheck (to disable SSO) the checkbox. |
Company Domains | Enter your company domain here. For multiple, separate your domains with a comma:
 |
User provisioning | These settings control what happens if a user logs in via SSO that hasn't been created in Perdoo yet.
When enabled, it'll create a new standard user with the same email address. When disabled, the user will not be able to log in.
The fields that will populate automatically are |
Strict authentication | For added security, enforce SSO-only logins, by checking the checkbox. This prevents any user from logging in via email password, or performing a password reset. |
Provider | Choose Google or a SAML (ADFS, OneLogin, Bitium, Okta, etc.) connection. |
SAML attributes
The following SAML attributes are supported:
Name | Value |
First name | user.first_name |
Last name | user.last_name |
Job position | user.job_position |
SAML information
ℹ️ Available on Premium and Supreme.
IdP Entity ID (aka. Metadata URL)
SSO URL (aka. SAML Sign In URL)
X509 Signing Certificate (in PEM or CER format)
Copy the following to your identity provider:
ACS URL
Entity ID
Need a hand?
Contact our friendly Support team via the in-app chat at the bottom-right of your screen, or email support@perdoo.com.