Enabling Single Sign-on (SSO)

Single sign-on (SSO) is an identification method that enables users to log in to multiple TAP accounts with one set of credentials.

Background

SSO implementation of TAP enables an organization to set up SSO-based access for different types of users across different TAP applications.

SSO allows enabled users to use the existing credentials they already have with their organization, to log into TAP applications, without needing to create new accounts and remember different credentials, whilst also maximizing the benefits of improved security and usability.

The following roles and applications are supported:

 

User Role

Application 

Ambassadors, Admins

 Feed

Ambassadors

Ambassador mobile app

Admins

Admin Dashboard

Prospects

Feed

 

SSO supports standards-based Identity Provider and supports identity and access management standards, such as OAuth 2.0, SAML 2.0, and OpenID Connect, and is built on the technology of a major cloud provider.

It supports encryption of data-at-rest and in-transit. The technology is HIPAA eligible and PCI DSS, SOC, ISO/IEC 27001, ISO/IEC 27017, ISO/IEC 27018, and ISO 9001 compliant.

How to get SSO enabled

  • Please note that SSO is only included as part of your license fee with some of our plans. To find out more, please contact your Customer Success Manager or send a request to support@theambassadorplatform.com.
  • SSO will be turned on for you and you will be given instructions on how to set it up. The setup process is rather straightforward and takes no more than 30 minutes.

  • When internal testing is completed on your end, you can turn off the ability to access TAP applications without SSO should you wish.

Shall you have any questions feel free to contact us via support@theambassadorplatform.com.