With SSO enabled, users can sign in with their existing credentials without having to use Appointedd specific ones. This not only gives users and organisations the control to choose their authentication method but also eliminates weak password use, and reduces the need to remember many different email and password combinations.
Security Assertion Markup Language (SAML) is an open standard that allows identity providers (such as MS Azure Active Directory) to pass sign in credentials to service providers (such as Appointedd).
Appointedd now supports SAML SSO, which means any external user directory using the SAML 2.0 protocol can be configured to manage Appointedd users. Read more about how SAML authentication with MS Azure AD works here.
Please note: Appointedd fully supports MS Azure with documentation and testing as part of this solution. Team Appointedd will add other identity provider documentation based on demand and feedback.
Managing Appointedd user permissions
When you add users to Appointedd via your Active Directory, they will be assigned restricted permissions to all Appointedd accounts assoicated with this SSO configuration.
We recommend configuring users' access to Appointedd via the Appointedd SSO configuration page before giving them access via your Active Directory.
Below, you'll find instructions on
how to customize user permissions to Appointedd
how to edit existing custom user permissions
how to delete custom user permissions
Customize Appointedd user permissions
Within your Appointedd account, go to the profile icon, then select Manage SSO. Here, you can customize the user's permissions by clicking on Customize user permissions. Fill out the relevant details, and adjust permissions as needed. If you need to adjust a user's access to multiple accounts, you can do this by repeating the process.
When migrating a user's login to SSO, the user will lose access via email and password after the first time they sign in with SSO. Their existing email and password will be replaced with SSO login.
Top tip: send this guide on how to log into Appointedd to your users
Edit an existing custom permission set
Once you have added users they will be listed on the SSO user management page within your Appointedd account under profile icon > Manage SSO.
To edit a user's permissions, select the pen icon next to their name. This will trigger an editing pop-up that will allow you to change their email address, the Appointedd account this permission set relates to, as well as the user permissions.
Delete user permissions
If one of your users doesn't need access to a particular Appointedd account anymore, you can delete their relevant user permission set on the same page.
You can do this by finding the relevant permission set (you can use the filters), and clicking on the bin icon.
Please note: If you need to delete a user's full access to Appointedd, this has to be actioned via your Active Directory. You might need to get in touch with your internal IT department to action this.
Please also note: If you delete a user's last permission set without deleting them in your Active Directory, their access will default back to restricted access to all Appointedd accounts associated with this SSO configuration. Learn more about Appointedd user permissions here.
Filter user permissions
If you need to find a particular user permission set, you can do this easily within your Appointedd account, under the profile icon, by clicking on Manage SSO.
Here, you can utilize the below filters to find the relevant permission set you are looking for: