With SSO, employees can access Paperless through an identity provider (such as Okta, OneLogin, Microsoft Azure AD, Google etc.).
Passwords will no longer be required for safe, fast access. Paperless' Single Sign-On is based on Security Assertion Markup Language 2.0 (SAML 2.0). SAML allows Single Sign-On across various domains. The SAML 2.0 standard is a leading industry standard for exchanging authorisation and authentication data that Paperless supports as a service provider.
Paperless does not transfer any passwords to or from itself during the authorisation process. Paperless instead receives a SAML assertion of the user's identity, which is electronically signed and valid for a limited period of time.
What are the benefits of SSO for Paperless?
Provide easy and secure access to Paperless accounts for users
Help IT and security departments centrally manage access to applications
Reduce password maintenance costs
Enforce additional password security measures such as password complexity requirements, password expiration and two-factor authentication (number of features available defined by your identity provider)
Please contact us if you want to set up SSO for your organisation.
What information is required from me?
In order to complete the setup, you'll need the following information from your IDP:
Identity Provider Single Sign-On URL
X.509 Certificate
How do I find this information on IDP side?
Example for Microsoft Azure AD
Identity Provider Single Sign-On URL:
Example: https://login.microsoftonline.com/xxxxxxx-xxxx-xxxx-xxxx-xxxxxx/saml2
โX.509 Certificate
Use "Certificate (Base64)
Without "-----BEGIN CERTIFICATE-----" and "-----END CERTIFICATE-----" as single line string (no line breaks)
Please contact us if you want to set up SSO for your organisation.