Fountain supports the Single Sign On (SSO) functionality for users. Companies that want their employees to use centralized, company-controlled single sign-on or “SSO” to log into Fountain can add Fountain as a “service provider” (login destination) to many cloud and on-premise identity providers, as well as to custom authentication solutions that support the SAML 2.0 standard. This article will help you set up SSO with Fountain for your organization.
Add-On Feature:
Fountain's SSO functionality is available as a premium feature. Please contact your Account Manager or Customer Success Manager if you're interested in this feature.
Get Started with SSO
Fountain's SSO functionality is available as a premium feature and is in early, limited release. Please contact your Account Manager or Customer Success Manager if you're interested in this feature.
Fountain uses Okta as our IDP provider. We support SAML 2.0
Fountain does not offer enforced SSO at this time
Fountain does offer JIT (Just In Time) provisioning
Fountain does not offer SCIM user provisioning at this time
Initial Set-Up
Notify your Customer Success Manager you would like SSO set-up for your account.
Fountain will provide you with the 3 secrets to configure your organization:
ACS URL
Audience URI
IdP ID
Use the IdP ID, ACS (Assertion Consumer Service) URL, and Audience URI to configure Fountain in your IDP and generate the following items and share them with Fountain:
IdP Issuer URI
IdP Single Sign-On URL
Share the x509 certificate
Fountain Configures
Fountain takes the information provided by your organization to configure the SSO.
Important Note:
If your organization is not enabled by Fountain for SSO, the users won't be able to login using SSO from Fountain