Trustpilot's Single sign-on (SSO) improves your account security by enabling your own authentication provider to access your Trustpilot Business page. This feature also streamlines user account management by simplifying password and access administration.
Configure your SSO settings
This feature is only accessible from an Admin user account. Learn more about user accounts here.
- In Trustpilot Business, go to Settings > Overview.
- Under Business Settings, click on Single sign-on. This will open the Single sign-on configuration page.
Reach out to your CSM if the Single sign-on settings menu isn’t available.
- Under Identity provider details, fill in your Identity provider URL, Identity provider entity ID, and Identity provider certificate (RSA-SHA256) in Base64 format.
For security reasons, we will remove your Identity provider certificate value from the form once you have saved it.
- Then, under Service provider details, copy Trustpilot's Service Provider ID and ACS URL into your organization's Single-sign-on configuration settings.
Depending on the service you’re using to set up Single-sign-on, Service Provider ID can also be referred to as Service Provider Entity ID, while Assertion Consumer Service (ACS) can be referred to as Reply URL.
- Click Save.
- In the pop up that appears, sign in with your email and password for your organization.
Here's an example of what it could look like:
Verification is successful if the Verify button disappears and you don’t see an error message.
If the verification has failed, you’ll see an error message at the bottom of the screen. Check that your Identify provider details and Service provider details are correct before you try again. If all else fails, reach out to your CSM for help.
Enable SSO login
Now, you’re ready to enable SSO for your organization.
- On the Single sign-on configuration page, go to User Management at the bottom of the page.
- Move the Enable SSO login toggle to on. A processing changes message will appear. This will enable SSO for all domains in your business account. The message will disappear once SSO is enabled.
- Log out of your Trustpilot account by clicking on the person icon in the upper right corner. Then, click Log out in the drop-down menu that appears.
- Once logged out, you'll be redirected to Log in to Trustpilot Business. Click Log in with SSO.
- Enter the domain name assigned to your account and click Log in.
- A popup will appear. Authenticate with your identity provider details here. Once authenticated, you'll be logged in with SSO.
To disable SSO login, move the Enable SSO login toggle to off and wait for the changes to process.
Enforce SSO login
Enforcing SSO means that all of your organization’s users can only log in via SSO. Access to all domains on the associated business accounts will be blocked from logging in via email and password or their Google account.
If a user is part of multiple business accounts, they can still access domains associated with their other business accounts via email and password or their Google account.
Here's how to do it:
- On the Single sign-on configuration page, go to User Management at the bottom of the page.
- Move the Enforce SSO login toggle to on. A processing changes message will appear. When the message disappears, SSO is enforced on all accounts.
To disable Enforce SSO login, move the Enforce SSO login toggle to off and wait for the changes to process.
To heighten security and ensure up-to-date access control, users will be logged out automatically every 24 hours, regardless of their activity within that time span.
If you have any questions, check our FAQ for more information.