A guide that explains the integration of Second Nature with a company’s Single Sign On features.

Overview

Single Sign-On (SSO) allows users to access multiple applications with a single set of login credentials. Integrating SSO with Second Nature simplifies the user experience by enabling seamless access to the platform, while also enhancing security and reducing administrative overhead.

Steps to Integrate SSO with Second Nature

1. Provide Federation Metadata to Second Nature: To begin the integration, provide Second Nature with your Identity Provider’s (IDP) federation metadata file, which is an XML file containing login configuration details. If you do not have a federation metadata file, you can alternatively provide the Sign-in URL and the X509 Signing Certificate.

2. Obtain Metadata File from Second Nature: Once you have provided the necessary details, Second Nature will generate and return a metadata file specific to your SSO configuration. This file will be used to finalize the integration on your IDP.

3. Map Required Attributes: Ensure that the following attributes are correctly mapped in your IDP to enable seamless authentication with Second Nature:

• email

• first_name

• family_name

4. Test the Connection: You can test the SSO connection by opening a browser in incognito mode and navigating to the following URL, with “SSO_NAME” replaced by a name provided by Second Nature:

https://app.secondnature.ai/?sso-name=

Additional Information

• Just-in-Time (JIT) Provisioning: Second Nature supports JIT provisioning, allowing new user accounts to be created automatically when they first attempt to log in through SSO.

• SP and IDP Initiated SSO: Second Nature supports both Service Provider (SP) initiated SSO, where the authentication process starts from Second Nature, and Identity Provider (IDP) initiated SSO, where it starts from your IDP.