Skip to main content
All CollectionsVidMob Overview FAQ
How do I configure Single Sign On (SSO) for my organization?
How do I configure Single Sign On (SSO) for my organization?

Configure Security Assertion Markup Language (SAML 2.0) SSO and create a seamless experience for your users.

Sarah Graham avatar
Written by Sarah Graham
Updated over 3 months ago

Before getting started there, there are a couple of key items to consider.

  1. Vidmob needs to verify all domains before configuration can be tested and implemented for any given organization. This ensures proper routing, security, and user access management. If you haven't already, please contact our support team or your VidMob representative with the domain name(s) you're planning to implement for your organization.

  2. Testing and configuring SSO can involve technical steps. While the process can be completed via our self-service page, we recommend scheduling a 15-minute call with one of our engineers to assist with any unexpected challenges.

  3. After SSO is configured for your domain, users still need to be invited to and accept their invitation to the Vidmob organization before they can successfully login with SSO.

How Do I Configure Single Sign-On (SSO) for My Organization?

Set up Single Sign-On (SSO) using Security Assertion Markup Language (SAML 2.0) to create a seamless, secure login experience for your users.

This guide provides an overview of VidMob's SSO authentication process, which is powered by Amazon Cognito. By configuring SSO, anyone in your organization can log in to VidMob using their existing credentials through your chosen identity provider (IdP).


Requirements

To configure SSO for your organization, the following is required:

  1. Identity Provider Access: Ensure that you or someone with access to your organization’s identity provider settings (typically an IT Admin) is available to configure SSO.

  2. Org Admin Access: The person configuring SSO must be an Organization Admin within the Organization on Vidmob’s platform.

  3. Metadata Exchange: You will need to exchange metadata between Vidmob and your identity provider to establish the connection.

  4. Attribute Mappings: Ensure your SAML server supports the following attribute mappings:

    • email (required)

    • family_name (recommended)

    • given_name (recommended)


How to Configure SSO

Step 1: Access the Security Settings

  1. Log in to acs.vidmob.com.

  2. From the homepage, select Organizations.

  3. Click on the Security section from the left navigation to access your SSO configuration options.


Step 2: Domain Setup

  1. From the SSO landing page, click Create configuration. Configure as many domains as needed for your organization.

  2. Upload or manually enter your identity provider’s metadata

  3. Copy the links provided to your identity provider

    • Reminder: VidMob needs to verify your domain before configuration can be tested and implemented. This ensures proper routing, security, and user access management.If you haven't already, please contact our support team or your VidMob representative with the domain name(s) you're planning to implement for your organization.


Step 3: Test the Configuration

  1. Click Test Connection to verify that SSO is working correctly.

  2. During the testing phase, users will have the option to log in via SSO or continue using their password. You can continue manual testing with your chosen domains.

Note: Testing and configuring SSO can involve technical steps. While the process can be completed via our self-service page, we recommend scheduling a 15-minute call with one of our engineers to assist with any unexpected challenges.


Step 4: Configure the Domains

  1. After successfully testing, you'll need to change the domain's status to Configured to finalize the setup.

    • While in "Testing" mode, the domain configuration is in progress, allowing additional testing. When you're ready, click Configure in the Action column to finalize the domain.

  2. A warning message will appear:

    "You are about to configure the (newdomainname) for SSO. After this, manual sign-in will no longer be available. Do you wish to proceed?"

    Once confirmed, the domain is fully configured, and manual sign-in will no longer be available for that domain.


Post-Configuration Options

  • Remove SSO:

  • Once a domain is configured, it can be removed/deleted if needed, but it cannot be reverted to "Testing."

  • If necessary, you can remove SSO from your organization by selecting the Remove SSO option in the more menu. This change will apply across the entire organization, and users will revert to standard login methods.


Additional Notes

  • Powered by Cognito: VidMob uses Amazon Cognito to manage SSO and authentication flows securely, including pre- and post-authentication steps.

  • Multi-Domain Support: Users can configure multiple domains. This ensures seamless access across your entire organization especially in cases when collaborating other partners on the Vidmob platform such as advertisers, creative and media agencies, data analytics partners, etc.

  • Two-Factor Authentication (2FA): Since many clients implement 2FA on their identity provider for internal security, Vidmob does not include its own 2FA for SSO users.

Did this answer your question?