![]() This basically controls if users will be automatically redirect to the IdP when they visit any of the Google services (e.g. When configuring the integration with the third-party IdP, you need to configure Domain-specific service URLs (see picture below). Well, at least this what you would expect as an engineer, but there is a small setting that can ruin your day and cause havoc if you don't configure it correctly. ![]() Everyone else will be able to log in normally (no redirections to the third-party IdP). This means only those in the OUs where the SSO integration was enabled will be subjected to the flow described above. When rolling out the Google integration, companies use Organization Units on Google Workspace to enable the new SSO experience in smaller sections to avoid major disruptions for the entire workforce. ![]() Once logged in, they will be logged into Google, then into Slack. If they don't have an active Okta session, they will be asked to log in into Okta.If they have an active Okta session, they are logged into Google, and then back into Slack.If they don't have an active session in Google, they are redirected to Okta for a session check. ![]() ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |