Click Travel is actively developing the ability to sign-in to our platform using single sign-on (SSO) from your corporate identity provider. This article provides more information about what we offer and how it works, as well as answering frequently asked questions.
What does Click Travel's SSO offer?
As of February 2021, it is possible to integrate your corporate identity provider using SAML2 protocols to Click Travel. Once integrated, customers can:
Sign up to access Click Travel using their SSO identities (once they are invited by a team administrator)
Sign in to their existing Click Travel accounts using their SSO identities after completing a one time linking
Separately, users can also sign in to their existing Click Travel accounts using Google Accounts.
We can also mandate the use of SSO for sign in and sign up, meaning that existing email address/password logins can no longer be used to access the platform. Customers often choose this option as it allows them more confidence in access control, especially if their company SSO already uses two factor authentication.
Which identity providers does Click support?
We use industry standard SAML2 protocols to connect to a wide range of identity providers. The most common integrated identity provider is Microsoft Azure Active Directory, so most of our support documentation focuses on that, but if you do use an alternative which can connect via SAML2 then you should be able to connect to Click Travel.
What about user management?
User lifecycle management, including management of new joiners, leavers and changes to existing users is something we're intending to add to our SSO integrations during 2021. If you'd like to hear more, please get in touch and we'd be more than happy to speak to you.
Do you support IDP SAML2?
For security reasons, we only support service provider (SP) initiated SAML2 connections and not identity provider (IDP) initiated ones.