Topic
Organization-Level Single Sign-On (SSO) Configuration for the Everbridge Manager Portal
Description
Organization-Level Single Sign-On (SSO) allows each organization within an Everbridge account to configure and manage its own SSO configuration independently from the account-level SSO configuration while remaining compatible with the existing account-level authentication setup.
This capability provides flexibility when multiple organizations within the same account use different Identity Providers (IdPs). Account administrators determine whether organizations are permitted to configure their own SSO settings. When enabled, organization administrators can configure and manage SSO for their organization without affecting the account-level configuration.
Key capabilities include:
Organizations can configure their own SSO settings independently
Different organizations can use different Identity Providers (IdPs)
SSO settings can be enabled or disabled using a configuration toggle
SSO settings can be edited through a dedicated configuration interface
Configuration sections are organized for easier navigation and management
Account-Level SSO Controls
Account administrators control the availability of Organization-Level SSO from the Single Sign-On for Manager Portal settings page.
Account administrators can perform the following actions:
Create a new Account-Level SSO configuration
Enable or disable Account-Level SSO
View and edit Account-Level SSO configuration details
Allow or restrict Organization-Level SSO configuration
If Organization-Level authorization is disabled, any existing Organization-Level SSO configuration becomes inactive. A confirmation prompt appears before disabling existing configurations.
Organization-Level SSO Configuration
When Organization-Level SSO is authorized by the account administrator, organization administrators can configure SSO settings for their organization.
Organization administrators can perform the following actions:
Create an Organization-Level SSO configuration
Enable or disable Organization-Level SSO
View and edit Organization-Level SSO configuration details
Configure SSO for both the Manager Portal and ManageBridge App
The configuration interface and fields for Organization-Level SSO are identical to the Account-Level SSO configuration interface.
SSO Certificates
The Single Sign-On Certificates page provides visibility into certificates used across the account.
Account administrators can:
View certificates used by Account-Level SSO configurations
View certificates used by Organization-Level SSO configurations
Manage certificates applied to SSO configurations
Organization administrators can view and manage certificates used by their organization's SSO configuration.
Event Logging for SSO Changes
Changes made to Manager Portal SSO configurations are recorded in the Event Log Report.
The following actions are logged:
Create
Update
Delete
The Event Log Report captures configuration changes for both Account-Level and Organization-Level SSO configurations.
Important Notes
Organization-Level SSO does not replace the Account-Level configuration. Both configurations can exist simultaneously.
Each SSO configuration is uniquely identified by its API Name. The Everbridge Service Login URL includes the API Name to identify which configuration is being used.
Only one SSO ID is supported per user profile in the Manager Portal. If different SSO IDs are used between Account-Level and Organization-Level SSO configurations, only the configuration matching the stored SSO ID will function correctly.
If a user has valid SSO IDs configured for both Account-Level and Organization-Level SSO configurations, the user can access the system using either SSO login URL.