Enabling Existing Sub-Users to SSO

This article explains how to enable Single Sign-On (SSO) for existing sub-users in your 101domain account. Linking sub-users to your organization’s identity provider (IdP) allows them to access their accounts using their corporate credentials, while preserving their current roles and permissions.

Follow the process below to ensure a secure and seamless login experience for your team.

Steps for Enabling Existing Sub-User accounts with SSO

1. Navigate to the Welcome dropdown menu on the top right hand side and click on My Account .

2. In My Account, scroll down to Security and click on Manage Users.

3. Select the sub-user you want to modify. You can either:

   1. Click on the sub-users name; or

   2. Click on the arrow on the right hand side of the row record.

4. On the configuration page, update the authentication settings as needed.

   • The configured IdP will appear in the Single Sign-On Provider drop-down menu.

5. Click on Save User.

After these steps, the sub-user can log in using your organization’s IdP. Upon their first successful SSO login, their corporate identity is linked to their 101domain sub-user account, preserving their existing roles and permissions.

The sub-user’s email address must match the email address used for their SSO profile.

For Google and Microsoft SSO, if a sub-user attempts to log in with SSO and their email address does not exist in your account, a new, unrelated 101domain account will be created for them.

Related Articles

• New Sub-User Onboarding with SSO

• Enabling Require SSO for Sub-Users