How to setup & manage SSO in XY Application

How to setup & manage SSO in XY Application

XY Sense supports SSO (Single Sign On) integration for identity providers that support Open ID connect, this enables ease of logging into the XY Sense application via SSO removing the need to maintain multiple logins. SSO integration enables IT administrators to manage & configure access to the XY Sense Application. 

 

Prerequisite

  • Your SSO provider must support Open ID Connect (OIDC) 
  • Let XY Sense know you are would like to enable SSO for your organisation via Zendesk 'Leave a Message' in the web-app or emailing XY Sense
  • You need to have completed Set up instructions for your Identity Provider
  • You need these values ready - Client ID, Client Secret and Issuer (Your SSO domain) from your ID Provider
  • You need to have access to the XY Application with CustomerAdmin permission to complete the integration
Identity Provider Setup Instructions
Okta How to Setup SSO for Okta
Microsoft Azure AD How to Setup SSO for Azure AD


Enable SSO integration in XY Application

  1. Log into your account on the XY Application https://app.xysense.io/
  2. Go to Admin > Single Sign On (from Left-hand bar) - If you do not see this option. Please contact support@xysense.com to enable this for your instance.
User-uploaded Image
 
User-uploaded Image
 
  1. Click Enable button
User-uploaded Image
 
  1. Enter the Sign in Display Name (Shows on the 'Sign in with ____' button), Client ID, Client Secret and Issuer (Your SSO domain) and click Save.
User-uploaded Image
 
  1. Click on the Ok button in the pop-up dialog
User-uploaded Image
 
  1. The confirmation message should appear. Please contact the support team in case of any problem. The Okta SSO integration is enabled now and all assigned employees can login via Okta.

Configure Default SSO User Permissions

 

  1. Navigate to Admin>Single Sign On in the XY Application
User-uploaded Image
 
User-uploaded Image
 
  1. Select 'Edit default permissions' button
User-uploaded Image
 
  1. In the pop-up, select the permissions you would like first time SSO users to be granted when logging into the XY Application. We recommend ViewLive and ViewLocations as the starting point.
    • ViewLive - enables users to view the 'Live tab' - real-time live view of occupancy & detections for any given site/floor
    • ViewLocations - enables users to view the 'Locations tab' - overview of all the sites, floors and their floor plans and mapped spaces.
User-uploaded Image
 

 

Note: For changes to permissions for individual users, Users with CustomerAdmin access will be able to configure the permissions for each individual user in Admin>Users.

Disable SSO integration in XY Application

  1. Log into the XY Application and go to Admin>Single Sign on
User-uploaded Image
 
User-uploaded Image
 
  1. Click the Disable button
User-uploaded Image
 

The SSO integration is now disabled - all users that previously accessed the app via SSO will not be able to access the XY Application. SSO must be re-enabled for access into the XY Application or users must setup another account and be invited to login to the application via email & password - please contact XY Sense Support.

Was this article helpful?
0 out of 0 found this helpful

Comments

0 comments

Please sign in to leave a comment.