SSO on ioTORQ EMIS supports any identity provider that implements the OpenID Connect (OIDC) standard.
Setting up SSO
Setting up SSO using OIDC on your ioTORQ system is a two-step process:
Registering ioTORQ EMIS in your OIDC provider (by the application admin in your company)
Enabling SSO in ioTORQ EMIS (by request)
Step 1 – Register ioTORQ EMIS in your OIDC Provider
Performed by: Application admin in your company
Sign in to your OIDC provider’s admin console (e.g., Okta or other OIDC-compatible identity provider).
Create a new application for ioTORQ EMIS.
Add the login redirect URI for the ioTORQ EMIS application.
For Example - https://<yourcompany>.iotorq.com/oidc/auth/
(Replace <your-company> with your actual ioTORQ tenant name)
Save your configuration.
Note down the following values (needed for Step 2):
Metadata URL
Client ID
Client Secret
Step 2 – Enabling SSO in ioTORQ EMIS
Performed by: Your company’s designated contact
Email support@iotorq.com with:
SSO Policy: Optional or Mandatory
Metadata URL (from Step 1)
Client ID (from Step 1)
Client Secret (from Step 1)
Once enabled, your users can start logging in with SSO via your OIDC provider.
Optional vs Mandatory
Optional SSO
When SSO is optional, users are given two options for authenticating: (a) signing in using the ioTORQ EMIS username and password (b) signing in with the OIDC provider.
Mandatory SSO
Users must log in via the OIDC provider and enter their work email address, which must match the identity provider record.