Introduction to SSO
Single Sign-On (SSO) allows users to log in to the Rival platform (https://rivaltech.io) using their organization's internal login system. The primary benefit of SSO is the ability to use the same credentials for both Rival and your organization’s internal systems, streamlining the authentication process and enhancing security.
Key Considerations when Enabling SSO
Before enabling SSO for your organization, there are a few important changes to be aware of:
Password-Based Login Disabled:
Users who previously logged in with a password will be required to authenticate through your organization's Identity Provider (IdP). They will no longer be able to use their Rival passwords to access the platform.SSO-Based Invitations for New Users:
Any new users invited to the platform will receive an SSO-based invitation and they will not be required to set up a password or MFA. Instead, they will log in using their organization's SSO credentials.Switching Back to Password Authentication:
If your organization later decides to disable SSO and revert to password-based login, users will be required to set up both a password and MFA to access the platform.
Technical Requirements for SSO Setup
Rival supports SSO authentication via Security Assertion Markup Language (SAML). SAML is an XML-based standard for exchanging authentication and authorization data between security domains or between an Identity Provider (IdP) and a Service Provider (SP).
Please confirm with your organization’s IT team that your SSO configuration is compatible with Rival’s requirements. Rival supports any IdP that meets the SAML Technical Requirements.
How to Connect SSO
Configuration by Client’s IT Team:
The client’s IT team is responsible for configuring SSO within their Identity Provider (IdP) system.
Please share this document with your IT team; it contains all details required by them to configure SSO on your end.
Rival’s SSO Configuration Details:
Assertion Consumer URL (ACS URL):
https://sso-auth.rivaltech.io/saml2/idpresponseEntity ID:
urn:amazon:cognito:sp:us-west-2_eZxa91qb8
Please note that your IdP can be using different terminology for the above details. At the end of this document there is a table that provides a list of terms used by different IdPs.
Client’s Configuration Parameters:
Once SSO has been set up in your IdP system, please provide the following information to your CS representative:Identity Provider (IdP) Metadata (in XML format as a link)
Email attribute mapping
Your Customer Support representative will work directly with you and your IT team to set up SSO for your organization.
Logging in with Your Organization ID
Once SSO is enabled for your organization, users will need to log in to Rival using their organization's SSO credentials. To do so, navigate to the Rival login page at https://rivaltech.io/auth/login/sso and enter your email address. Please ensure that the email address associated with your Rival account matches the one used with your organization's internal systems for SSO. You will then be authenticated through your organization's SSO system, allowing you to access the Rival platform without the need to enter a password or MFA credentials. Computes input number to absolute
| Assertion Consumer URL (ACS URL) | Entity ID |
Active Directory Federation Service (ADFS) | Endpoint | Relying Party Trust Identifier |
Azure | Reply URL | Identifier |
Centrify | Assertion Consumer Service (ACS) URL | SP Entity ID / Issuer / Audience |
G-Suite | ACS URL | Entity ID |
Okta | Single sign on URL | Audience URI |
OneLogin | SAML Consumer URL | SAML Audience |