SSO is available on the Pro and Enterprise plans.
If your team uses Microsoft's Azure Active Directory as its identity provider, it's easy to set up SAML single sign-on with Float in just a few minutes.
The Account Owner can set up SSO from the Security tab in Team Settings.
To complete the configuration form, you'll need to access your Azure account and get the required details:
Login URL -> SAML 2.0 Endpoint URL (HTTP).
Azure AD Identifier -> Identity Provider Issuer.
App Federation Medatada UI -> X.509 Certificate.
💡 Here's a tip: For additional application information, take a look at this tutorial on configuring single sign-on between Azure Active Directory and Float.
Once the setup is complete, your team can log into Float from Azure AD or by clicking the Sign in with Azure AD directly from your Float subdomain (i.e., yourteamname.float.com).
The Account Owner can decide if the SSO is required for sign-in, or if the password sign-in is allowed as well.
Troubleshooting
If you are seeing an issue with SSO login or it stops working for everyone on the team, this could be due to these two possible reasons:
SSO stopped working for everyone: In most cases, this is due to an expired certificate. Please update your certificate in Team Settings > Security.
SSO is not working for some users: It might be caused by a mismatch between the team member's email in Azure and Float. Please review the team member's email address to ensure it matches.
If this didn't help or if you are seeing other issues with your SSO, please reach out to us at support@float.com for further assistance.
Additional notes
User provisioning is not currently supported. Before your team can authenticate via Azure AD, they must already have account access to Float.
To remove your authentication, select Configure from your Team settings > Security and delete the values.
If you change your email address, please reach out to us at support@float.com so we can update the SSO email for you.