Enable and Configure SSO for Users in your OneDesk account

OneDesk allows you to set up single sign-on (SSO) to permit your users to log in using their existing credentials. If the user does not exist, once they log in using SSO, OneDesk will create a user record for them. Since email addresses must be unique in OneDesk, it is important that you do not already have a customer record with the user’s email address or the sign on will fail.

Enable and Configure SSO for Users in your OneDesk account

The basic steps to enabling SSO for your customers in OneDesk are as follows:

  • Go to: ADMINISTRATION > INTEGRATIONS > SINGLE SIGN ON
  • Turn on the switch “Enable SSO for Users”
  • Select OpenID Connect
  • Click “Add Open ID Client Record”
  • Complete the required fields for Authorization URI, Token URL, Client ID, and Client Secret
  • Use the generated URLs to automatically log your users into the Main App, Widget (for live chat), Knowledge-base or Portal.

 

Step by step guide using Single Sign-On using Microsoft Azure Active Directory

1. Add Open ID Client Record

  • Go to: ADMINISTRATION > INTEGRATIONS > SINGLE SIGN ON
  • Enable SSO for users, Select and Expand Expand ‘OpenID Connect’, and click ‘Add Open ID Client record’.

single sign on for openid

2. In Azure, Create a new App Registration

  • In Azure, open ‘Azure Active Directory’.

azure active directory

 

  • Select ‘App Registrations’ and click ‘New registration’.

app registration

Register the OneDesk application by:

  • Giving it a name: ‘OneDesk’
  • Adding the Redirect URI as ‘https://app.onedesk.com/sso/openid’
  • Clicking ‘Register’

redirect url

3. Create and Copy over a ‘Client Secret’

  • Click ‘Certificates and Secrets’
  • Click ‘New Client Secret’
  • Copy the client secret key over to the ‘Client Secret’ field in OneDesk.

new client secret

4. Copy over the ‘Client ID’

  • In Azure, in the the newly registered app (called ‘OneDesk’), copy the ‘Application (client) ID’
  • Paste it into the ‘Client ID’ field in OneDesk

copy client id

5. Copy the Endpoints to ‘Authorization URI’ and ‘Token URL’

  • In Azure, in the the newly registered app (called ‘OneDesk’), click the ‘Endpoints’ button.
  • Copy the ‘oAuth 2.0 authorization endpoint (v1)‘ to the ‘Authorization URI’ field in OneDesk.
  • Copy the ‘oAuth 2.0 token endpoint (v1)‘ to the ‘Token URL’ field in OneDesk.

copy endpoints

6. Here is the completed OpenID Client record in OneDesk
completed single sign on details

 

Use the provided URLs to log into OneDesk

As soon as the record is completed, OneDesk will generate a list of URLs, one for each of your Customer Apps. Use the appropriate URL to allow your customers to log into that customer app using their Azure Active Directory credentials. You will probably primarily want to use the ‘Main App’ URL, however, by default OneDesk also generates URLs for the website widget (for live chat and more), for the Customer Portal, and for the knowledgebase. Use them as necessary.

 

Watch a video

Here is a video of enabling SSO for OneDesk using Microsoft Azure Active Directory.

Please let us know if you have questions.

Leave a Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>