Once you’re ready to enable SSO for your organization, we recommend communicating with owners and your employees about the upcoming change to prevent login issues and ensure a smooth transition.
Before enabling SSO, we recommend reading our pre-configuration guide and FAQ and discussing the configuration options with other admins or owners at your organization (if any).
What to tell your organization
Other Administrators
Defined as:
• Sitelink: “Corporate Administrator” role
• Edge: “Manage Users” Permission
• Easy: “Owner” role on every site at the organization.
Who will enable SSO? It is important that only one person enables and configures SSO.
When will SSO be enabled?
-
Whether SSO will be required or optional.
If optional, existing users can skip setting it up, but any new user must use SSO.
Whether you’ll use your own company’s login credentials/domains to access your software.
The settings and requirements you want to implement for SSO user accounts and Multi-Factor Authentication.
Communication Checklist
Communicate the following to your employees before enabling SSO:
- ☐
Timeline for enabling SSO
- ☐
The reason you are choosing to implement SSO. We’ve included a blurb in the communication template below, but we encourage you to make it specific to your organization.
- ☐
Whether SSO is required or optional. If you choose to make SSO optional initially but will require it later, communicate that timeline.
- ☐
Whether your users will create SSO login credentials or use your own company’s login credentials/domains.
- ☐
The email/username to use. The email and username will be the same for users with individual company email addresses but if they aren't given individual company email addresses, they will need to create a username in email format.
- ☐
Your multi-factor authentication methods. If using Google Authenticator or Okta Verify, you may want to encourage employees to download the app beforehand.
- ☐
Who to contact at your organization if they need help. Storable Support cannot assist with SSO log-in issues.
Communication template
We’ve included a template below for you to use when communicating with your team. However, we recommend customizing it for your organization.
Placeholder text is highlighted in red and should be replaced. Helper text is highlighted in blue and indicates the selections you should make to align with your configuration settings.
Hi Team,
We are planning to implement SSO with Multi-Factor Authentication for our software on [ENTER DATE YOU PLAN TO SET IT UP]. SSO utilizes Multi-Factor Authentication (MFA) for enhanced security to help protect our business against cyberattacks and to comply with Payment Card Industry Data Security Standard (PCI DDS) requirements.
What does this mean for me?
When you log in to your software on [DATE], you will be prompted to set up an SSO User Account to continue. You are or are not required to set up an SSO User Account to log into your software on that date. Here are the details you’ll need to know about setting up SSO:
If you do offer individual company email addresses, include this information: You will use your assigned email address ending in @yourdomain.com as your email address and username.
If you do not offer individual company email addresses, e.g., you utilize a single store-level email, include this information: Please enter [store-level email address] as your email address. Create a username in the following format: firstname.lastname@[your domain.com]
Sitelink/Edge only: If there are screens or actions that require users to enter their login credentials , include this information: You will now use a PIN to perform password-protected actions. You will be prompted to set your desired PIN at first use.
Sitelink only: If you set up SSO when you log in to SiteLink Web Edition, you'll be prompted to set it up again when you log in to SiteLink Corporate Control Center and/or myHub. Choose that you already have an SSO User Account to link the two accounts. The same scenario applies if you initially log in to Corporate Control Center/myHub, then log in to SiteLink Web Edition.
Multi-Factor Authentication:
Our organization requires [email, Google Authentication, and/or Security Key or Biometric Authentication] for MFA. Storable has an article with instructions to set up MFA: SSO Multi-Factor Authentication setup.
You will be required to reauthenticate with the MFA method every 14 days.
If you will be selecting “Yes, lock users out of failed attempts”: You will be locked out of your software after [enter your lock-out policy for failed attempts] failed login attempts. If you are locked out, please contact [the owner’s name or names] to have your account unlocked.
What should I do if I need help?
You can find instructions on how to create your SSO User Account in this Help Article: SSO Enrollment Guide
Storable support cannot assist with SSO login issues. If you are unable to log in to your software or have any other issues accessing your software after creating your SSO, please contact [owner name] at [owner contact details].