Single Sign-On (SSO) Integration [Early Access]

Follow

You can implement SSO (Single Sign-On) for your teammates to access Dynamic Yield. This lets you apply the same authentication policies as you do with your other enterprise applications when signing in to the Dynamic Yield admin. You can implement SSO through OIDC or SAML 2.0 which are supported by most major Identity Providers such as Okta and Azure Active Directory.

Note: We currently support SSO with a single IDP through one Dynamic Yield account only. 

 

Getting Started

Contact your CSM and provide the following information:

For SAML 2.0:

  • Identity provider name
  • SAML metadata
  • Public Certificate

For OIDC:

  • Identity provider name
  • URI (Uniform Resource Identifier)
  • Client ID
  • Client Secret

SSO Login Flow

After SSO integration is enabled on your account, follow these steps to sign in:

  1. From the sign-in page, click Log in using SSO.
  2. You’ll be redirected to the SSO page, where you’ll enter your corporate email address, which is authenticated by your Identity Provider.
  3. Enter your Identity provider credentials.

image1.png

FAQ

Can I sign in using my regular email and password?

No, once SSO is enabled you can only sign in through your identity provider.

Can I invite teammates which are not listed under my Identify provider?

Teammates not listed under your Identify provider will not be able to sign in.

Can I connect my account with more than one identity provider?

No, we currently support connecting to a single IDP.

Can I connect several Dynamic Yield accounts with the same identity provider?

No, we currently support connecting a single account to a single IDP

Can I change my user name, password, or phone number?

Once SSO is enabled, your credentials can only be edited and managed by your identity provider. 

How do I disable the two-factor authentication in an SSO account?

Once SSO is enabled, two-factor authentication can only be disabled and managed by your identity provider. 

How do I add a new teammate?

Make sure your teammate is listed within your identity provider with access to the Dynamic Yield app. Then you can invite the teammate from the manage teammates screen in Dynamic Yield.

How do I revoke a teammate's access?

This can either be done by removing the teammate's access in your identity provider or by deleting the teammate in Dynamic Yield.