Single Sign-on Connection
After you enable single sign-on (SSO), you can track the connection's status on the Single sign-on page. You can also manage details, such as the organization name to display when users sign in.
After you configure your connection, you can turn on SSO to enable users to sign in through your IdP. Users with emails on your claimed domains are then redirected to your IdP when they sign in with their Blackbaud IDs. After they authenticate through your IdP, their Blackbaud IDs:
-
Automatically redirect to your organization's login for future sign-ins
-
Use your IdP for password updates, lockouts, and other authentication management
Make sure to resend any pending invitations that were sent before you turned on SSO. To configure your SSO connection, see Azure AD Setup, Google Workspace Setup, OpenID Connect (OIDC) Setup, or SAML 2.0 Setup.
On the Single sign-on page, you can turn off your SSO connection as necessary, such as to troubleshoot an issue or change the connection method. After you turn off SSO:
-
Your organization's users will sign in through Blackbaud's secure authentication service. They will receive email to reset their passwords.
-
You can still use your SSO connection in test mode to verify and manage settings. For more information, see Test Mode.
To turn off your SSO connection, select Turn off SSO. Then on the Turn off SSO connection screen, select the Turn off SSO connection checkbox and select Turn off SSO connection.
Have issues with your SSO connection? To help troubleshoot, see SSO Connection Troubleshooting.