Federated Single Sign-On (SSO) is a feature that allows Apricot users to log in using their existing credentials from an external Identity Provider (IDP) like Azure or G Suite. This simplifies access to Apricot by integrating its login mechanism with broader organizational authentication systems.

Users required to access Apricot through SSO do not log in with the standard workflow, instead entering their credentials for your Identity Provider. This may be the case for other tools or platforms your organization uses, ultimately reducing the amount of passwords your users have to keep secure.

You can set up Single Sign-On with any Identity Provider (ex. Microsoft Azure). On the Manage Federated SSO page under Access Control, you'll find the SSO pool ID and pool domain name to insert into your IDP in order to generate a metadata .xml file. This file should then be uploaded into Apricot to add a new SAML configuration to your site. Afterwards, a unique Apricot SSO login URL will be generated to distribute to users who must log in to your database through SSO.

Review the following articles to learn how to manage SSO configurations and your users' login options.

Federated Single Sign-On (SSO) is available for all Apricot 360 organizations in the United States, Canada, and Australia. Please reach out to Support to gain access to Federated SSO.