September 10, 2021
Article : 068858
This article provides information about the frequently asked questions about the Rainbow Office Single Sign-On.
• What is Single Sign-On (SSO)?
• Who is eligible for SSO?
• What are the requirements for SSO?
• What is the process if an SSO-enabled company adds new Users?
• Where can Rainbow Office customers use SSO?
• What notification will Rainbow Office send out after SSO is enabled?
• If the SSO server failed, or customers are not able to sign in with SSO, what should they do?
• How can Rainbow Office customers set up their SSO settings?
• If multiple accounts are using a customer’s IDP entity ID, does it mean they cannot access SSO functionality at all?
• Is it possible to make all Users sign in using their e-mail instead of their number/extension?
What is Single Sign-on (SSO)?
Single Sign-on allows employees in a company to access all the company applications with one set of credentials. Depending on the company, the credentials can include email, phone number, username, and password. The company routes all logins through an IDP (Identity Provider) with which the company has a purchased license. The IDP usually hosts a login page for the employees to enter their company credentials before entering any application. Single Sign-on provides better security with the central authentication point, limiting the possibility of phishing.
To ensure there is no conflict with Single Sign-on for your account, each user contact email address must be unique when creating user extensions or call queue extensions.
NOTE: Rainbow Office does not support Single Log Out (SLO) yet.
Who is eligible for SSO?
Customers with Rainbow Office Premium and Ultimate accounts are eligible for SSO.
What are the requirements for SSO?
An IDP (Identity provider) that supports SAML 2.0 is required. Most IDPs in the industry support SAML2.0, but it should still be confirmed before the SSO implementation.
What is the process if an SSO-enabled company adds new Users?
The new user will receive an activation email for the account to set up their PIN & security questions. The email will include instructions for them to sign in with SSO.
Where can Rainbow Office customers use SSO?
SSO works with your Rainbow Office online account and all Rainbow Office applications. SSO also works with all Rainbow Office integration solutions such as Salesforce, Google, and Office 365.
What notification will Rainbow Office send out after SSO is enabled?
SSO notifications are sent in the following scenarios:
• Enabling with "Enforce SSO login only"
• Enabling with "Allow users (either or)..." and selecting Yes to maintain password
• Disabling SSO
Apart from the scenarios above, customers will need to send out the notification and let their employees know about the change after SSO is enabled.
In the case, the SSO server failed or customers are not able to sign in with SSO, what should they do?
Customers can reach out to Rainbow Office Support. Rainbow Office support can manually reset the password and send the temporary password to the Users of the account.
How can Rainbow Office customers set up their SSO settings?
Account administrators can go to More > Security and Compliance > Single Sign-on. From there, admins can select Set up SSO by yourself or Contact Customer Support.
Multiple accounts are using a customer’s IDP entity IDnts. Does it mean they cannot access SSO functionality at all?
No. They will not be able to set up SSO by self-serve, but they can still call Rainbow Office Support for manual configuration of SSO.
Is it possible to make all Users sign in using their e-mail instead of their number/extension?
Yes, admins can configure this setting. Follow the steps below:
1. Go to Admin Portal > More > Security and Compliance > Single Sign-on > SSO Settings.
2. Click Off to disable the ability to log in with Rainbow Office credentials.
3. Click Save to save your changes.