Single Sign-On from an External Identity Provider
You can set up single sign-on (SSO) so that users can access Salesforce without
logging in again. This mechanism is called inbound SSO. Likewise, you can set up outbound
SSO so that users who are logged in to Salesforce can access third-party apps and other
services without logging in again.
Salesforce supports SSO from third-party identity providers. For SSO to work, you need an identity provider and a service provider to coordinate authentication and authorization information using SAML assertions.
For more information about SSO, refer to these resources.
- For an overview about how to set up and troubleshoot SSO, watch this video: Setting Up Single Sign-On (23:31 minutes).
- For a tutorial about setting up SSO for your org, go to Trailhead: Set Up Single Sign-On for Your Internal Users.
- For in-depth information, check out the SSO Implementation Guide, Salesforce Single Sign-On Implementation Guide.
