DinMo Documentation
  • 📙Core Concepts
  • Guides
    • ⚡Get started with DinMo
      • Initial Configuration of DinMo
        • Connect a Source
        • Create your Models
        • Create a Destination
      • Create and Activate Segments on DinMo
        • Create your first Segment
        • Activate your first Segment
    • 🌐Workspaces & Organizations
    • 💭Need Help?
  • Integrations
    • Data Sources
      • AWS Redshift
      • Databricks
      • Google BigQuery
      • PostgreSQL
      • Snowflake
    • Destination Platforms
      • Actito
        • Synchronize users attributes
        • Export contact lists
      • All My SMS
      • Batch
        • Synchronize contacts (MEP)
        • Synchronize profiles (CEP)
        • Send events (CEP)
      • Braze
        • Synchronize users attributes
        • Send track events
        • Synchronize subscription statuses
        • Export user lists
      • Brevo
        • Synchronize contacts
        • Export contact lists
      • Criteo
        • Export contact lists
      • Dialog Insight
        • Synchronise Contacts
      • Emarsys
        • Export contact lists
        • Synchronize contacts data
        • Synchronize custom table's data (RDS)
      • Firestore
        • Create and update Collection Documents
        • Export Audiences
      • Google Ads
        • Export audiences
        • Enhanced Conversions for Web
        • Upload click or offline conversions
          • Prerequisites and walkthrough
        • Adjust conversion events
        • Retract conversion events
      • Google Display & Video 360
        • Export audiences
      • Google Search Ads 360
      • Hubspot
        • Synchronize objects
      • Intercom
        • Export segments
        • Synchronize contacts
        • Synchronize companies
      • Iterable
        • Synchronize user attributes
        • Export contact lists
      • June Email Marketing
        • Export Contact Lists
      • Klaviyo
        • Export contact lists
        • Synchronise contacts
        • Create subscription list
      • LinkedIn Ads
        • Export user audiences
        • Export company audiences
      • Mailchimp
        • Export segments
      • Meta Ads
        • Export audiences
        • Send conversion events
      • Microsoft Ads (Bing)
        • Export audiences
      • Pinterest Ads
        • Export audiences
        • Send conversions
      • Reddit Ads
        • Export Audiences
      • Salesforce Marketing Cloud
        • Synchronize data extensions
      • SendGrid
        • Synchronize contacts
        • Export contact lists
      • Selligent
      • Snapchat Ads
        • Export Audiences
      • Splio
        • Synchronize contacts
      • TikTok Ads
        • Export Audiences
        • Send Offline Conversions
        • Send Web Conversions
      • X (Twitter)
        • Export audiences
      • Zendesk
        • Synchronize users
        • Synchronize custom objects' data
  • Models
    • Overview
    • Primary Keys
      • Detect duplicate primary keys
    • Calculated Fields
  • Identity resolution
    • Overview
  • Segments
    • Visual Builder
    • Breakdowns
    • Overlap Analysis
  • Activations
    • Overview
    • Sync Scheduling
    • Troubleshooting Syncs
      • Automatic pause or resume Activations
      • Sync warnings
  • AI PREDICTIONS
    • Overview
    • LTV and Churn
    • Product Recommendations
  • WORKSPACE MANAGEMENT
    • Set Up
    • Managing Users & Roles
    • Audit Logs
    • Enterprise Single Sign-On (SSO)
  • Security & Privacy
    • Overview
    • Networking
    • Privacy
    • Data Processing
Powered by GitBook
On this page
  • Overview
  • How to setup SSO Using Google Workspace
  • In Google Workspace
  • Step 5: Limit Access to Authorized Users (Optional)
  • FAQ
  1. WORKSPACE MANAGEMENT

Enterprise Single Sign-On (SSO)

PreviousAudit LogsNextOverview

Last updated 2 months ago

Enterprise single sign-on (SSO) is only available for Organisations on the Enterprise Plan.

Overview

Enterprise Single Sign-On (SSO) creates a secure bridge between DinMo and your organisation's infrastructure, allowing authentication data to be sourced directly from your identity provider (IdP). This replaces traditional email/password-based authentication providing seamless and centralised access management.

With Enterprise SSO, you can efficiently manage large teams using third-party IdPs like Google Workspace . DinMo continuously expands its list of supported IdPs. If your preferred IdP is not currently available, feel free to contact us for assistance.

DinMo's SSO implementation is based on the widely adopted SAML 2.0 protocol, ensuring secure and standardised integration with your authentication system.

The DinMo SSO is activated at the DinMo organisation level and available for all related workspaces.

How to setup SSO Using Google Workspace

You need Admin access to your Google Workspace and DinMo organisation to be able to use the Google Workspace SSO.

In Google Workspace

Step 1: Create a custom SAML application for DinMo

  1. Sign in to your Google Admin account as an admin

  2. Go to Apps/Web and mobile apps.

  3. In the upper panel, select Add App

  1. Name your App DinMo and click Continue to access the Google IdP page

Step 2: Collect the SAML app details

  1. Make note of SSO URL and the Entity ID. You will need them to configure the SSO for your DinMo organisation.

  2. Download the Certificate

  3. Click Continue to proceed to the app configuration.

Step 3: Configure Google SAML SOO in DinMo

  1. Sign in to your DinMo workspace as an organization admin

  2. Go to your organization management space

    • Click on your workspace name in the top left navigation menu.

    • Select Manage Workspaces.

    • Go to the Organization Settings tab.

  3. Click on Configure Google SAML SSO button

  1. Fill in the Authentification Settings:

  • SSO Portal Key: Choose a unique key to identify your SSO organization (e.g., <company-name>_SSO).

  • Sign on URL: Enter the SSO URL collected in Step 2.

  • Application Identifier (Entity ID): Enter the Entity ID collected in Step 2.

  • Click Save

  1. Collect the generated values:

  • DinMo’s Entity ID

  • DinMo’s Callback URL

  • Your Portal URL: The URL used to connect to your DinMo workspace through SSO.

Step 4: Complete the SAML App Configuration in Google Workspace

  1. In the ACS URL field, enter DinMo’s Callback URL collected in the previous step.

  2. In the Entity ID field, enter DinMo’s Entity ID collected earlier.

  3. Click Save.

Step 5: Limit Access to Authorized Users (Optional)

For additional security, you can restrict access to your DinMo workspace to authorized users only in your IdP. To enable this, toggle the Enable SAML-only authentication option.


🎉 Congratulations! You have successfully enabled SSO for all your DinMo account workspaces.

FAQ

Does DinMo support Just-In-Time (JIT) provisioning?

Currently, DinMo doesn’t offer JIT user provisioning. If an SSO user doesn’t have an existing DinMo account, their account won’t be created automatically.

To add users:

  • Log in to your DinMo workspace.

  • Invite the user to join your workspace.

  • Assign the appropriate roles and permissions by navigating to Settings > Members and managing roles on the Users & Permissions page.

Choose Add custom SAML app from the suggested options