Using OpenID for single sign-on (SSO), Deel allows customers to choose from a wide range of SSO providers like Okta, Azure, Google, OneLogin, and Pingfederate, enabling their workers and client admins to log into Deel with their preferred credentials. OpenID, known for its security and versatility, supports these various SSO options, simplifying and securing access to Deel's platform.
In this article:
Before you begin
Features of SSO Integration in Deel
There are three main features of SSO Integration in Deel:
1. Mandatory SSO Use for All Members: Deel's integration enforces the use of a Single Sign-On (SSO) provider for every member of an organization. This replaces the traditional password or Google login methods that are typically supported by default.
2. SSO for All Email Types: Our integration now enhances the SSO experience by matching the email address from Identity Providers with either Deel account email or users work email provided by clients. The "Work Email" is provided by the client, stored in the contractor's General Information section under 'Work Email'. This ensures a consistent and secure login process across different email types used by contractors on Deel.
3. Unique Login Link for Easy Access: Deel provides a unique link that clients can share with any member of their organization. This link facilitates automatic login to Deel, streamlining the access process and enhancing user convenience.
How to connect OpenID SSO
✅ Step 1 - Locate OpenID Connect on App Store: First, navigate to the App Store and search for OpenID connect. Once found, click on the Connect button to start the setup process. You'll be prompted to enter specific information into the input fields.
✅ Step 2 - Enter Your credentials: Copy the credentials from your provider and paste it into the designated input field.
✅ Step 3 - Validation and Proceeding: If your configuration is valid, the system will confirm and allow you to proceed with the integration.
✅ Step 4 - Enable: Once you're back to the OpenId Connect integration page, click on "Enable" and finish the setup providing a name, choosing whether or not to allow password sign-in, and copy the "Redirect URL" so you can use it in your identity provider.
Configuring OpenID in your third-party application
Creating the integration with OpenID is just the first step. Once you've connected OpenID, you can enable it in the following applications by following their respective linked articles: