Single Sign-On (SSO) lets your users log in to Whistleblower Software using the identity provider your organization already uses, instead of managing a separate password. This means users sign in once through your company's system and are automatically authenticated.
Whistleblower Software supports the following SSO methods:
Google OAuth 2.0: The simpler option for organizations using Google Workspace. No metadata files required. See the Login with Google article to set this up.
Microsoft OAuth 2.0: The simpler option for organizations using Microsoft 365. No metadata files required. Enabled directly in Settings.
SAML: A more advanced protocol supported by most enterprise identity providers, including Google (SAML), Microsoft Azure, AWS, Okta, and Ping. Use this if your organization requires centralized identity management or your IT policy mandates SAML.
Login option SAML 2.0 is available only on the Advanced plan.
Which option should you choose?
If your organization uses Google Workspace or Microsoft 365 and doesn't have a specific IT requirement for SAML, use the OAuth option. It takes minutes to enable and requires no configuration on the identity provider side.
If your organization uses a dedicated identity provider such as Okta, Ping, or AWS, or if you need centralized user access control, use SAML or SCIM 2.0.
We’re here to support you. If you have questions reach out to us directly via the Messenger icon in the bottom right corner of your screen, or send us an email at [email protected].