Skip to content

Single Sign-On

Overview

Single Sign-On (SSO) lets your users use a single, common set of credentials for Unicko and other applications in your organization. Unicko SSO is based on OpenID Connect.

Prerequisites

  • Premium, Enterprise, Scale or Education account.
  • You must be the owner of the Unicko account or have an admin role.
  • You must have administrator-level access to your organization’s Identity Provider account.

OpenID Connect Identity Provider

Your Identity Provider must conform to the OpenID Connect 1.0 specification.

  1. Create a new application in your Identity Provider management interface.
  2. Choose Web application as the Application type.
  3. Ensure that the application is limited to users from your organization.
  4. Enter the following as the Authorized redirect URI:
    https://www.unicko.com/sso/oidc/callback
  5. Ensure that the scopes lists openid, email, and profile.
  6. Locate the Client ID and Client secret. This values will be needed for the configuration in your Unicko account.
  7. Find your identity provider Discovery document URL. It should have the form:
    https://provider-host/.well-known/openid-configuration

    Instructions for identity providers:
    Google Workspace
    Microsoft identity platform

Configuration

  1. Open the Single Sign-On configuration on your Unicko account settings page.
  2. Enter your OpenID Client ID, Client Secret and the identity provider Configuration URL (Discovery document).
  3. Click Save.
  4. To enable Single Sign-On for a meeting set the meeting's registration type to Organization.