PageProof

PageProof users in your organization can use single sign-on to log into PageProof using the same credentials as they use for your other corporate applications.&nbsp;

This is all possible if your organization has a PageProof Teams Plus or PageProof Enterprise license and is using one of these SSO providers:

Microsoft Entra ID (Azure Active Directory)

- Microsoft Entra ID (Azure Active Directory)
- Okta
- OneLogin
- Delinea
- G Suite
- Ping Identity
- Shibboleth
- Any SAML2 provider

Multi-factor authentication (MFA) is turned on at your SSO provider. PageProof also supports 2FA for users who are not part of your SSO directory application.

<a href="https://help.pageproof.com/en/articles/3646274-scim-system-for-cross-domain-identity-management">SCIM</a> (System for Cross-domain Identity Management) is also available to PageProof Enterprise customers using single sign-on.

PageProof supports IdP initiated, SP initiated, and SP initiated with passthrough support.

IdP initiated begins at the Identity Provider with the sign-in completing first, then redirecting to PageProof via the ReturnURL.

SP initiated begins at the PageProof login screen where the user enters their email address. PageProof retrieves the details of the IdP and redirects the user to the IdP. Once the sign-in is complete, the user is redirected to the ReturnURL.

SP initiated with passthrough support follows the SP initiated flow, but allows the email to be auto-populated and continues the uninterrupted login flow to the IdP. This login flow has <code>?email=user@example.com&amp;SSORedirect=true</code> appended to the login URL.

- IdP initiated begins at the Identity Provider with the sign-in completing first, then redirecting to PageProof via the ReturnURL.
- SP initiated begins at the PageProof login screen where the user enters their email address. PageProof retrieves the details of the IdP and redirects the user to the IdP. Once the sign-in is complete, the user is redirected to the ReturnURL.
- SP initiated with passthrough support follows the SP initiated flow, but allows the email to be auto-populated and continues the uninterrupted login flow to the IdP. This login flow has <code>?email=user@example.com&amp;SSORedirect=true</code> appended to the login URL.

To get started, your PageProof customer success manager can provide you with:

EntityID (Typically <a href="https://app.pageproof.com" rel="nofollow noopener noreferrer" target="_blank">https://app.pageproof.com</a>)

- EntityID (Typically <a href="https://app.pageproof.com" rel="nofollow noopener noreferrer" target="_blank">https://app.pageproof.com</a>)
- ReturnURL

The attribute returned should be configured with NameID as emailAddress.

The metadata.xml is returned to PageProof (containing the public key for signing) and is loaded against the PageProof team requiring SSO. The configuration can be set to enforced once testing is complete. This will route all users in your team to sign-in via SSO and will remove the local password account ability.

Please contact <a href="mailto:hello@pageproof.com" rel="nofollow noopener noreferrer" target="_blank">hello@pageproof.com</a> to talk further about setting up single sign-on for logging into PageProof with ease, and controlling logins at your corporate IT management level.

Learn more about <a href="https://pageproof.com/learn/single-sign-on-for-your-organization" rel="nofollow noopener noreferrer" target="_blank">PageProof’s industry-leading security</a> features.

If you are on an Teams Plus or Enterprise license and would like to turn on single sign-on, here’s everything you need to know about SSO.

Single sign-on

Book a demo if you'd like some special treatment.

Learn

Find answers and get help from Intercom Support and Community Experts

Link, Press control-option-right-arrow to exit

Empty Help Center

Uh oh. That page doesn’t exist.

Disappointed

Neutral

Smiley

Thinking...

Searching through sources...

Analyzing...

Tickets submitted through the messenger or by a support agent in your conversation will appear here.