Integrating SSO with Prospectus Plus
Single Sign-On (SSO) is available to simplify access to the Prospectus Plus backend. With SSO enabled, your institution can control administrative access securely and efficiently through your existing directory services.
You’ll need to create a specific group within your directory named ProspectusPlusEditor.
Any user added to this group will automatically have access to the backend of Prospectus Plus via SSO — no additional accounts to manage, no extra passwords to forget.
To integrate your SSO with Prospectus Plus, please provide the following:
Entity ID
(This uniquely identifies your Identity Provider (IdP) to our system.)
Single Sign-On (SSO) Service URL
(This is the endpoint where users will be redirected to authenticate.)
Certificate Fingerprint (SHA256)
(This ensures we can validate the authenticity of your IdP securely.)
Attribute Mapping
We need to know what your IdP calls the following attributes:
user_login (typically a username or login ID)
user_email
display_name
first_name
last_name
Please ensure your SSO configuration sends these attributes as part of the SAML assertion.
If you have any questions, encounter any snags, or just want a bit of reassurance, our live chat support is ready to help. We genuinely love making things smoother for you — just click the chat bubble and a real human will be with you shortly.
⸻
Quick tip: When you’re naming the group, make sure it’s exactly ProspectusPlusEditor — no spaces, no underscores, no variations — or the magic won’t happen.
How it Works
You’ll need to create a specific group within your directory named ProspectusPlusEditor.
Any user added to this group will automatically have access to the backend of Prospectus Plus via SSO — no additional accounts to manage, no extra passwords to forget.
What We’ll Need from You
To integrate your SSO with Prospectus Plus, please provide the following:
Entity ID
(This uniquely identifies your Identity Provider (IdP) to our system.)
Single Sign-On (SSO) Service URL
(This is the endpoint where users will be redirected to authenticate.)
Certificate Fingerprint (SHA256)
(This ensures we can validate the authenticity of your IdP securely.)
Attribute Mapping
We need to know what your IdP calls the following attributes:
user_login (typically a username or login ID)
user_email
display_name
first_name
last_name
Please ensure your SSO configuration sends these attributes as part of the SAML assertion.
Need a Hand?
If you have any questions, encounter any snags, or just want a bit of reassurance, our live chat support is ready to help. We genuinely love making things smoother for you — just click the chat bubble and a real human will be with you shortly.
⸻
Quick tip: When you’re naming the group, make sure it’s exactly ProspectusPlusEditor — no spaces, no underscores, no variations — or the magic won’t happen.
Updated on: 02/05/2025
Thank you!