There are a few different ways to accomplish “Single Sign On” (SSO) based on your specific needs. Single Sign On is a way for a user to sign in to one “Identity Provider” and then from there, be able to “Sign In” to other web applications without having to keep entering in different usernames and passwords, and these other web applications are referred to as “Service Providers” to the “Identity Provider.”
There are three option to achieve Single Sign On into your Private Labeled VT System:
In short, SAML (Security Assertion Markup Language) is an authentication standard that allows a user to log on once for affiliated but separate websites. Use SAML for a secure connection that will automatically update a user’s login information if it has been changed. It is an industry standard for Single Sign On and you can learn more about SAML 2.0 on Wikipedia.com
If your company uses a Single Sign-On (SSO) identity management solution (such as Okta, OneLogin, etc.), an Administrator at your company can now add the LightSpeed VT application to your SAML 2.0 implementation. This gives your users the ability to enter a single set of login credentials to access the LSVT application and any other third-party systems that have been integrated with Okta (e.g., Salesforce, Marketo, etc.)..
There will be the need for someone on your technical team to determine which attributes from the SAML assertion claims will be exchanged between the Identity Provider (IdP, the client) and the Service Provider (SP, LightSpeed VT), and those settings configured in the LSVT SSO Admin area; which is found in your “System Settings.” It is also necessary for both parties to exchange an x.509 Certificate to ensure secure data exchange.
How the process works is that if we see a user that we recognize, we simply let them in via the SAML assertion. If we do not recognize the user, we will create a new user for the person based on the configuration that has been set up in the LSVT SSO Admin area.
The LSVT API is a fully documented REST API that has methods for not only Single Sign On, but also a myriad of other admin activities and reporting that you can automate the use of through the API.
It is common that you will need a developer on your end to implement this solution. The LSVT REST API is very well documented and has an entire “Integration Management” tool set with searchable log files, flexible security settings, and easy to use consoles for testing.
Google or another Supported Social Media Site
Once a user has been created in LightSpeed VT, they can subsequently sign in with one of the supported networks, which are:
This will link these accounts together by the “Email Address” and users do not need to enter their LightSpeed VT username/password in if this button is pushed from the “Sign In Box.”
This feature is “On” by default, but can be toggled “OFF” if desired.
Final note about SSO from your VT System to another Application
If you are interested in users going from your VT System to another Web application, we do have what we call a “Pass Back” Method that will pass a user back to any other web application; find an article for additional information on this here: Pass Back Feature.
This is not actually related to Single Sign On, but may be helpful to know when implementing Single Sign On, and this is that your VT System allows you to have more than one username, and you can connect them by simply having the same email addresses on the additional accounts. Username and Email address are two different fields in your VT System, and username needs to be unique, but you can have the same email on several usernames, such as:
And using the Account Switching feature, you can switch between these accounts.