You need to sign in to do that
Don't have an account?
TheRotnelson
How to not enable single sign-on for your system administrator ?
Hi,
Salesforce documentation suggest that in order to prevent lockout of your org when using SSO "System Administrators should not be SSO-enabled as they will be locked out during outages"
How can I accomplish this? I don't find any such in the settings menu options or on the profile.
Is it possible to allow just selected user groups to use SSO?
https://developer.salesforce.com/docs/atlas.en-us.api.meta/api/integration_and_single_sign-on.htm
Salesforce documentation suggest that in order to prevent lockout of your org when using SSO "System Administrators should not be SSO-enabled as they will be locked out during outages"
How can I accomplish this? I don't find any such in the settings menu options or on the profile.
Is it possible to allow just selected user groups to use SSO?
https://developer.salesforce.com/docs/atlas.en-us.api.meta/api/integration_and_single_sign-on.htm
As this question is answered in success community, I am posting the link so that others can benefit from it.
https://success.salesforce.com/answers?id=9063A0000019UtSQAU
Please refer below Salesforce document which explains about SSO with examples and its Best practices.
https://developer.salesforce.com/page/How_to_Implement_Single_Sign-On_with_Force.com
Thanks and Regards
Sandhya
you can remove the sso enabled from your System Admin Profile.
PFB to disable the SSO on profile level.
Thanks !
We are trying to achieve the same and we use SAML SSO. Please let me know if you found any solution for this.
Thanks,
Sathish
This is old old, BUT you will NEVER see the " Is Single Sing-On Enable" in any Profile until you do the next steps:
- Settings|Single Sign-On Settigns
- Edit
- You need to check "Disable login with Salesforce credentials" (PLEASE DON'T LOG OUT YET)
- Now that you checked the "Disable login with Salesforce credentials" you will see un any Profile the "Is Single Sing-On Enable" checkbox.
- Usually this is uncheck to all profile, so you need to add the check to all profile you want to push the SSO.
- I'm assuming you built the SSO and went to You Domain and Add in the "Authentication Configuration" section you new SSO Provider as one of the "Authentication Service"
I hope this help all the people tha have been dancing around all the search engines, Hehe.PS Remember to mark this as the BEST Answer @TheRotnelson if at this moement helped you, :)