Welcome to our guide on Single Sign-On (SSO), a feature designed to simplify the login experience across multiple services for users. With SSO, a user can access different applications or services using one set of login credentials, eliminating the need to remember multiple usernames and passwords. This guide explains how SSO functions when using Salesforce Identities (or Experience Cloud as the broader service is known) as the identity provider, accessing both the organization's website ("Service 1"), and the Soapbox Engage portal experience ("Service 2").

What is single sign-on (SSO)?

Single Sign-On (SSO) is an authentication process that allows a user to access multiple applications or services with a single set of credentials. This means once a user logs in to one service, they won't need to enter their login details again when accessing other services within the same SSO ecosystem. SSO streamlines the authentication process, enhancing both user experience and security.

How does SSO work with Salesforce Identities (Experience Cloud)?

Step 1: Initial Login

When a user first accesses any service, like the organization's website (Service 1), they will be prompted to log in if they haven't already. This involves entering their username and password once. Upon successful authentication, Salesforce Identities, acting as the identity provider, verifies the user's credentials and grants access to Service 1.

Step 2: Accessing Soapbox Engage's Portal (Service 2)

After the user is logged into Service 1, they may want to access Soapbox Engage's portal experience (Service 2). Here's where the essence of SSO is most apparent:

1. Transition to Service 2: When the user navigates to Service 2, they might encounter a button or prompt indicating that they can log in using their existing authenticated session. This doesn't mean the system "magically" knows who the user is without any interaction. Instead, it's prepared to use the user's authenticated status with Salesforce Identities to streamline access.

2. Prompting the SSO Process: By clicking the button or following the prompt, the user initiates the SSO authentication process. This doesn't require re-entering their username and password. Instead, Salesforce Identities communicates the user's authenticated status to Service 2 behind the scenes.

3. Seamless Authentication: Service 2 communicates with Salesforce Identities to verify the user's identity based on their existing session. If the session is valid, Service 2 grants access without requiring further login details.

Step 3: Enjoy Seamless Access

After this quick and secure process, the user is granted access to Service 2, leveraging their existing authenticated state. This eliminates the hassle of logging in multiple times, providing a seamless and efficient user experience.

Key Takeaways

1. SSO Simplifies Logins: SSO reduces the need for users to remember and enter multiple sets of credentials, streamlining access to various services.
2. Interaction Required: Transitioning between services may require a simple action, like clicking a button, to initiate the SSO process. This is a security feature ensuring that user consent is obtained before sharing authentication states across services.
3. Enhanced Security and Convenience: By using Salesforce Identities as the identity provider, SSO offers a balance of security and convenience, making it easier for users to manage access across multiple services while maintaining high security standards.

We hope this guide clarifies how Single Sign-On works with Salesforce Identities and Soapbox Engage's portal experience for users. If there are further questions or assistance is needed, users are encouraged to contact our support team by opening a new support ticket.