Unifize Knowledge Base
  • Quickstart
    • Welcome to Unifize!
  • Getting started
    • Setting up your Unifize account
      • Signing up with invite link
      • Logging in with email
    • Quickstart demo
    • Key features & navigation
      • Records
      • Conversations
      • Checklists
    • First steps for new users
      • Creating a new record
      • Creating records from inbound email
      • Filling checklist metadata
      • Linking related records
      • Sharing conversations as email
      • Sending and receiving emails in Unifize
      • Inviting people
      • Changing your preferred language
      • Filtering records in My Inbox
      • Generating PDF reports
      • Creating custom reports
      • Creating custom dashboards
    • Using Unifize AI
  • Troubleshooting & support guide
  • User Guide
    • Definitions
      • Process
      • Record
      • Conversation
      • Report
      • Chart
      • Checklist
      • Org
    • Navigating the platform
      • Profile
      • My Inbox
      • Manage
      • Homescreen
      • Contacts
      • Direct Messages
      • Dashboard
    • Data & process management
      • File Management
      • Checklists & Forms
      • Rich text in checklist
      • Working with records
        • Due dates & priorities of a record
    • User & role management
      • Understanding roles & access
      • Managing permissions
      • Deactivating users
      • Team & organization
    • Mobile & web accessibility
      • Unifize Lite
      • Mobile app
      • Web app vs Unifize Lite
    • Security, compliance & infrastructure
    • Personalizations
      • Set your profile picture
      • Reset your Passwords
      • Customizing Homescreen
      • Set your email notification preferences
    • File upload
      • SharePoint
        • Configuring SharePoint on Unifize
        • Using SharePoint on Unifize
    • SSO
      • Logging in with SSO
      • SSO using SAML
    • Process Builder
      • Checklist
        • Picklist
          • Picklist field in Checklist
  • Product Help
    • Unifize Document Management System (DMS)
      • Document Control
      • Change Control
      • Training Management
      • Onboarding guide for DMS
      • Troubleshooting & support guide for DMS
  • Admin Guide
    • Multi-language translation support
      • Enabling and configuring language support
      • Managing user language preferences at scale
      • Using the translation editor to customize UI
    • Customization & configuration
      • Configuring processes
      • Configuring revision fields
      • Configuring approval workflows
      • Configuring reminders on processes
      • Checklist layout settings
      • Custom language settings
      • Creating a chart from reports
      • Configuring Microsoft Office 365
        • Permissions required for SharePoint
  • Developer Documentation
    • Introduction
      • Concepts & terminologies
    • Authentication
      • App management
      • App tokens
    • Usage
      • Fair usage policy
      • Testing environment
      • Quickstart
    • API Reference
      • Applications
      • Processes
      • Records
      • Field values
  • RELEASE NOTES
    • February 2025
    • March 2025
    • April 2025
      • Rich Text Fields in Checklist
      • Filling Checklist Metadata with AI
      • 'My Conversations' is now 'My Inbox'
      • Feature Enhancements
Powered by GitBook
On this page
  • Introduction
  • Why SSO matters for security and compliance
  • Key capabilities
  • Authentication flow
  • SSO configuration overview
  • Compliance considerations
Export as PDF
  1. User Guide
  2. SSO

SSO using SAML

Introduction

Unifize supports single sign-on (SSO) using the SAML, allowing organizations to integrate their existing identity providers (IdPs) such as Microsoft Entra ID (Azure Active Directory), Google Workspace, Okta, or other SAML-compliant systems.

SSO centralizes and secures user authentication, enabling IT teams to enforce identity policies while improving user experience and aligning with enterprise security and compliance standards.

Why SSO matters for security and compliance

Centralized authentication

SSO ensures all authentication flows are governed by your organization’s IdP. This gives IT teams control over:

  • Credential lifecycle and user provisioning

  • Password policy enforcement

  • Multi-factor authentication (MFA) requirements

  • Device and location-based access policies

Regulatory alignment

SSO contributes to organizational compliance with standards such as:

  • SOC 2

  • ISO 27001

  • HIPAA (where applicable)

It supports access control policies, traceable login activity, and identity governance—key components of secure process management.

Reduced risk exposure

Since SSO-managed users do not create or store passwords in Unifize, the risk of password-related attacks is eliminated. Authentication happens entirely through the trusted IdP, lowering the application’s security footprint.

Key capabilities

Capability
Description

SAML 2.0 support

Integrates with any SAML-compliant IdP

Domain-based routing

Users are redirected to their IdP based on email domain configuration

MFA support

Multi-factor authentication is handled by the identity provider

OTP-based signature validation

SSO users approve digital signatures with one-time passcodes

Centralized session management

Sessions follow IdP-configured timeout and reauthentication policies

Authentication event logging

Login and OTP activities are logged and auditable in Unifize

Authentication flow

  1. User navigates to the Unifize login page or opens the mobile app

  2. They enter their work email address

  3. If their domain is SSO-enabled, Unifize redirects them to the identity provider

  4. The IdP authenticates the user (including MFA if configured)

  5. After successful login, the user is redirected back to Unifize

For approval workflows, users are prompted to confirm their identity by entering a one-time passcode (OTP) sent to their email. This substitutes the need for a Unifize-managed password.

SSO configuration overview

SSO is configured by Unifize administrators from Org Settings → SSO. Required fields include:

  • Entity ID (from the IdP)

  • SSO URL (IdP login endpoint)

  • X.509 certificate

Unifize provides the following for your IdP setup:

  • Service provider Entity ID

  • Authorization callback URL

  • Org SSO URL

For Azure AD (Microsoft Entra ID), Okta, and Google Workspace, setup requires mapping these values within the enterprise application’s SAML configuration.

Compliance considerations

Security domain
SSO alignment

Access control

Identity provider controls access centrally

Password policy management

Handled by IdP; Unifize does not store SSO passwords

Deprovisioning and revocation

Disable user access in the IdP to remove Unifize access immediately

Audit trail

Unifize logs all login and OTP-based approval actions

Signature compliance

OTP-based authentication ensures signature traceability

PreviousLogging in with SSONextProcess Builder

Last updated 8 days ago

Domain (e.g. )

yourcompany.com