You can configure your workspace with three different authentication methods:
You can configure the authentication method in the workspace settings modal. Note that for setting up SSO you will need to reach out to us for configuration details.
The default authentication method for all workspaces. This method allows users to log in with an email and password or a Google account.
Allows anyone with your company domain Google account to log in to your workspace. You can set the default role for users logging in with this method (View Only, Comment Only, Editors or Admins).
SAML SSO is a standard for authenticating users with a SAML service provider. This method allows you to set up SAML SSO for your Avo workspace, and connect it to your own SAML service provider. Example of SAML service providers are Okta, Active Directory, JumpCloud and Google.
To enable SAML SSO for your Avo workspace, reach out to us.
Currently Avo supports service provider–initiated sign-on, e. g. when the users type their SSO email on Avo and then they are redirected to the company's SSO page. Avo currently does not support IdP-initiated sign-on.
Create a new SAML SSO app in your SAML service provider. We will ask you for the following details from the SAML service provider:
- Entity ID
- SSO URL
Add the following details to the Avo SAML configuration in your service provider:
- Authorization callback URL (ACS URL):
- Entity ID:
To learn more, here are resources from common SAML providers on how to configure a SAML SSO app: