Single Sign-On (SSO) is an identity and access management security method that requires identification via your own Identity Provider. The primary purpose of SSO is to enhance security by adding an extra layer of protection by managing the username and password via your own central Identity system. It also allows system administrators to revoke access to Spotler FeedbackPro by simply limiting or disabling the user within your own system. We do not provide user provisioning via this route.
We are using the OpenID standard and support the following Identity Providers:
- Azure/Entra
- SurfConext
How do I enable SSO on Spotler FeedbackPro?
Contact your Spotler accountmanager
Without the Redirect URi, provided by Spotler FeedbackPro, you cannot set up SSO. Please contact your accountmanager first if you want to use SSO for Spotler FeedbackPro.
Azure/Entra
- Navigate to Azure Active Directory and copy the Tentant ID for step 7.
- Select App registrations in the sidebar and click on New registration.
- Enter a name and the
Redirect URiprovided by Spotler and click Register. - On the following page, copy the Application (client) ID for step 7. Next, click Add a certificate or secret next to Client credentials.
- Add a new client secret, select an expiration period and copy the secret value for step 7. We need a new secret before this one expires. Write this down in your monitoring tool.
- Set the API permissions from the list below, with Admin consent required: no
- offline_access
- openid
- User.Read
- profile
- In order for Spotler FeedbackPro to configure SSO, we need the:
- Tenant ID from Step 1
- Application (client) ID from Step 4
- Secret value from Step 5
Important: use the correct mail address
Make sure the user's mail in Azure AD matches the email address of their Spotler FeedbackPro account.