User Experience for Single Sign-On

Ci offers integration with a number of third party applications to support Single Sign-On (SSO).  The user experience is slightly different than when logging into Ci traditionally or registering as a new user in Ci.  Instead of being presented with a regular login page, company networks that have SSO enabled, will be presented with a page that has two buttons on it:

  • Employee Login
  • Non-employee Login

SSO-Login1.png

If a user then selects either of those buttons they will be presented with another actual login page.

For the Employee Login, a user will see something similar to the below view:

SSO-Okta-login.png

The user would enter their company's enterprise credentials that they would normally use for logging into any of their internal applications/computers.  The user is then taken to where they were attempting to go.  Here are some examples of how the user is directed depending on what they clicked on in order to login:

  • User goes to bespoke company network URL with the employee login button and then logs in.  They will be directed to their Dashboard after logging in.
  • User is sent an invitation to a Secure MediaBox.  After they login  as an employee, they will be directed to the MediaBox page.
  • User is sent an invitation to a Secure WorkSession for VideoReview, ImageReview or MediaLog.  After they login as an employee, they will be directed to the WorkSession page.
  • User is sent an invitation to a Team Workspace.  After they login as an employee, they will be directed to the Team Workspace.

One of the great features of using SSO is that there is no longer a traditional registration.  If a user logs in through the Employee Login button option, and they have never registered previously, it will auto register based on their SSO login.  Some examples of that flow would be the following:

  • Unregistered user is sent an invitation to a Secure MediaBox.  After they login  as an employee, they will be directed to the MediaBox page.
  • Unregistered user is sent an invitation to a Secure WorkSession for VideoReview, ImageReview or MediaLog.  After they login as an employee, they will be directed to the WorkSession page.
  • Unregistered user is sent an invitation to a Team Workspace.  After they login as an employee, they will be directed to the Team Workspace.

If a user from identified email domains intended to only go through the SSO login experience attempt to any of the following:

  • Login as the non-employee
  • Attempt to login from the generic workspace.cimediacloud.com
  • Attempt to register by clicking on the Sign-Up Here link from a login page

They can be redirected to login with the Enterprise login with SSO.

Attempt to login via traditional login with Ci credentials and not the SSO:

SSO-attempt-reg-login.png

Attempt to sign-up for Ci creating regular credentials:

SSO-attempt-signup.png

Will be redirected to this page where they can click to login through SSO:

SSO-enterpriserequest.png

If users have any questions about the Single Sign-On user experience, please feel free to reach out to the SONY | Ci Customer Success Team.

 

 

 

 

Have more questions? Submit a request