Falcon supports a wide range of authentication methods to keep your social media content safe and secure. In addition to a Falcon password, Social Login, and the added protection of Two-Factor Authentication, we allow our customers to use their own Identity Provider (IdP) to authenticate their users via Single Sign-On.
What is Single Sign-On (SSO)?
Single Sign-On is an authentication method which allows users to access multiple logins for multiple sites or apps with only one set of credentials (e.g., an email and password).
Configured by your IT Administrator, SSO is often seen as a safer and more secure alternative to managing and remembering several independent login credentials. In Falcon, it’s easy for any organization to link Falcon to their own SSO solution. Once set up, users in your organization can simply log into Falcon via your Identity Provider rather than their Falcon password or Social Login.
What SSO Options Does Falcon Support?
Security Assertion Markup Language (SAML) is an XML-based standard that can perform Single Sign-On (SSO) exchanges. SAML SSO gives your organization a centralized and secure way of controlling user access to the Falcon platform.
OpenID Connect is an interoperable authentication protocol based on the OAuth 2.0 family of specifications. It uses straightforward REST/JSON message flows. OpenID Connect lets developers authenticate their users across websites and apps without having to own and manage password files.
Setting Up SSO in Falcon
To get started with SSO, please reach out to the Falcon Support Team for a personalized, guided setup. While the required information may vary depending on your SSO solution, please see a summary of the steps below:
- Falcon will provide you with information which needs to be configured on your Identify Provider (IdP) tool.
- Once you have configured the correct information on your end, we will request a metadata file from you.
- Once Falcon has implemented your metadata file, Falcon will generate a customer-specific URL.
- You will log in via the generated URL.
- Once you have successfully logged in, users in your organization will now be required to complete authentication via your own Identify Provider (IdP) instead of using a password or Social Login. Find out more about the login flow here.
Is SSO Required?
Setting up SSO in Falcon is optional. However, once implemented, it will be required that all users in your Falcon organization are authenticated this way. Users will not have the option to use a password or Social Login as an alternative method of logging in.
Find out more about the SSO login flow for all users here.
If your Falcon organization has enabled Single Sign-On (SSO), by default all users will be required to log in using this method. However, exceptions can be made if, for example, external stakeholders do not utilize the same IdP as the rest of the organization. Please contact your organization's Customer Success Manager for help accommodating all users.