SSO Domain Verification

Introduction

SSO domain verification is an advanced sub-configuration within SSO's global settings. It enables the verification of domains used in SSO identity emails for integration with External Share.

The Goal

This feature aims to simplify access for external users under the IDP flag. Normally, with SSO, external users must confirm their account creation, although an External Share account is automatically created for them upon their first access to any share protected by SSO.

Once the domain of external users under the IDP is verified, they will no longer need to confirm or be informed about the creation of an External Share account. They will be able to access their external user dashboard and view the intended content immediately upon logging in via the SSO provider.

How to Verify

A global admin can specify the domain addresses for verification under the domain verification settings. External Share will then provide a TXT DNS record, which must be added to the domain's DNS records. This process typically takes only a few minutes or seconds to populate. Once verified, the domain status will be updated to "verified," eliminating the need for new users accessing the content via SSO to be notified or confirm their account creation.

Step By Step Setup

Open

As a global admin, follow these steps to verify a domain in External Share:

1. Select the apps dropdown menu.

2. Select External Share

3. Click on the Global Settings tab

4. Click on the SSO Configuration tab

5. Click on the Domains sub-tab

6. Add the domain you wish to verify in the designated field and click Add

7. Copy the TXT record and navigate to your domain provider. Add the TXT record under the DNS records for that domain

8. Save your DNS settings and return to the Domains sub-tab

9. Wait a few minutes, then click on the Verify button

The domain status will change to "Verified".