This document has been generated with machine translation.
This section describes how to configure SSO settings.
What are SSO (single sign-on) settings?
This is a mechanism that allows users to use multiple systems with a single user authentication.
By enabling SSO in LegalOn, you can access the service via your ID provider.
*When SSO is enabled, the authentication method will change from email address and password authentication to authentication via your ID provider.
Currently, LegalOn has confirmed compatibility with the following ID providers.
Microsoft Entra ID (formerly Azure Active Directory)
Okta
HENNGE One
*SSO can also be used with ID providers other than those listed above if they support SAML 2.0.
Terms of Use
*Please contact your module administrator for the status of your option contract. *If you would like to apply for options, please contact your sales representative. |
Set up SSO
Important
If you enable SSO with incorrect settings, you will not be able to log in if you close your browser or log out.
After enabling SSO, please make sure to test that you can log in successfully by following the " Test SSO login " procedure with the SSO settings screen open in another browser or in incognito mode in the same browser.Users whose email domain set in the SSO settings screen matches the email domain used to log in will be able to log in with SSO. Users logging in with other email domains will be authenticated with their email address and password.
1. Configure SSO settings on the ID provider side
① Click [Admin settings] → [ SSO settings ] in LegalOn.
Troubleshooting
The "SSO Settings" menu is not displayed:
This is a paid option, so it will not be displayed if you have not subscribed to it. If you have subscribed but it is still not displayed, please contact our support team.
(2) Copy the "Endpoint URL" and "Entity ID" and configure the settings on the ID provider you are using.
The settings vary depending on your provider. If you have any questions, please contact your ID provider.
Related articles
2. Configure SSO settings on LegalOn
Obtain the following information from the ID provider you set in steps 1-2.
Endpoint URL
Public Key Certificate (X.509 Certificate)
② Enter the email domain and the information obtained in "Identity provider endpoint URL (HTTP redirect)" and "SAML signing certificate (X.509 public key certificate issued by the identity provider)" in the figure below.
③ Click [Register].
Important
For the email domain, please enter the characters after "@".
The "Endpoint URL" may be different depending on the ID provider, such as the login URL.
For "Public key certificate (X.509 certificate)", enter all text contained in the file with the extension ".pem".
* Copy and paste all text, including "-----BEGINCERTIFICATE-----" and "-----END CERTIFICATE-----".
3. Enable SSO
(1) Click [Admin settings] → [ SSO settings ] → [Enable SSO].
② Confirm the message and click [Activate].
SSO will be enabled.
SSO log in will be applied from the next time you log in to LegalOn。
Test whether you can log in with SSO
With the SSO settings screen open, open "https://app.legalon-cloud.com/" in a different browser or in incognito mode in the same browser, and click "Start".
Open " https://app.legalon-cloud.com/ " and click "Start".
Enter your email address and click "Continue."
Log in from the login screen of the ID provider you set up by following the instructions on the screen.
When the LegalOn dashboard is displayed, SSO login is complete.
Troubleshooting
If the following error screen appears when you log in for the first time, restart the tab or browser and open " https://app.legalon-cloud.com/ " again.
Deactivate SSO
Click [Admin settings] → [ SSO settings ].
② Turn off [Enable SSO (Single Sign-On)].
③ Confirm the message and click [Deactivate].
SSO log in will be applied from the next time you log in to LegalOn。