EliseAI uses Single Sign-On (SSO) to ensure that user access, permissions, and property visibility on our platform match your existing internal systems
When SSO is enabled, EliseAI reads user data directly from your organization’s identity provider (IdP) and Property Management System (PMS). This sets up each user with the correct role and property access without manual account creation or password management.
|
■ To begin setting up Single Sign-On (SSO)... Navigate to the Users tab in the AI Portal's left sidebar. You can also find it via search: press Cmd+K (Mac) / Ctrl+K (Windows), or click Search at the top of the sidebar. Configuring your SSO settings requires access to AI Portal, so please make sure that you have login credentials and the proper permissions set up. For more information on inviting new users, see Set Up and Invite Users in AI Portal. |
Permissions
The following permissions are required to set up SSO for your organization.
| Permission Name | View |
Add |
Edit |
Delete |
| Admin > SSO Settings | ✓ |
✓ |
✓ |
✓ |
Update permissions in your AI Portal's Users > Manage Users page. See the Set Up and Invite Users article for instructions.
Step 1: Choose Your Connection Type
Your setup process depends on whether you use SAML or Azure (OpenID). Steps 2 and 3 will update automatically based on your selection in this step. Before proceeding, verify your connection type with your organization.
Step 2: Create An Application In Your System
After verifying your connection type, create an EliseAI application with parameters specific to your system. Refer to the following articles for instructions:
For SAML, ensure the following attributes are passed through: given_name, family_name, email, title, department in addition to all groups.
During the application creation, you must collect information for the next step, which will vary based on your system.
Step 3: Submit Information To EliseAI
After creating the application in your SAML or Azure system, enter the collected information into AI Portal.
SAML
SSO Login URL
X.509 Certificate
Email domains of your organization
Azure
Client ID
Client Secret
Primary Domain
Email domains of your organization
After completing the fields, click 'Submit' to finalize. Once the setup is complete, a banner and toggle will appear at the top of the page. Click the 'SSO Disabled' toggle to enable SSO for your organization. The banner will disappear once SSO is activated.
Step 4: Set Up Role Mapping
We highly recommend setting up Role Mapping once SSO is activated. See our Setting Up Role Mapping in SSO article for instructions.
Please note that we use "location" for community mapping. If you need us to use a different field, please submit a request to our support team.
Step 5: Create User Accounts Through SSO
We recommend requiring users to log in one time before launch. This activates their accounts in EliseAI, allowing them to be added to Voice Teams, Rotations, and other features.
See our EliseAI SSO & Pre-Launch User Login article for more information.