SSO usin SAML question

Hello Support Community. We have setup SSO using SAML and it appears to be working fine for licensed users. Unlicensed users on our email domain are asked to create a password (therefore a new account). Can I assume it is expected behavior that only licensed users will be able to take advantage of the SSO configuration? Thank you.

Find more posts tagged with

Education

IT & Operations

Account and User Management

Comments

Sam Castle

Hello,

Thank you for this question! I will be happy to advise on the expected behavior when enabling SAML for your Smartsheet account and managing the authentication options for the users.

Both a licensed and an unlicensed user can use the SAML authentication option to sign into Smartsheet if their user account is on an eligible plan (Enterprise-level). After Smartsheet has been set up within your Identity Provider (IdP) and your Smartsheet Enterprise plan has been configured, a System Admin can enable SAML as an authentication option. This will allow the licensed and unlicensed users that are listed within the Enterprise plan's User Management menu to sign into Smartsheet with the Your Company Account option (SAML-based SSO).

Licensed User - https://help.smartsheet.com/articles/520100-user-types#licenseduser
Unlicensed User - https://help.smartsheet.com/articles/520100-user-types#nonlicensed

Free collaborators are similar to unlicensed users but are not a part of a Business or Enterprise plan.

Free Collaborators - https://help.smartsheet.com/articles/520100-user-types#collaborator

The SAML-based SSO feature is only available on Enterprise-level plans and will be unavailable to users with your email domain if they are a free collaborator or if they are on another Smartsheet plan (Business or another unconfigured Enterprise plan).

User Auto Provisioning automates the process of adding users to an Enterprise account in Smartsheet. Rather than manually inviting users through the User Management screen, enable this feature to automatically add users to your account if they sign up for, or on their next sign in to Smartsheet with an email address owned by your organization. You can choose to automatically add users to the account as licensed or unlicensed, depending on the access you'd like to provide.

Automatically Add Users to an Enterprise Account with User Auto Provisioning - https://help.smartsheet.com/articles/2072731-user-auto-provisioning-enterprise-only-

Additional Resources:

SAML and SSO for Smartsheet - Overview (Enterprise Only) - https://help.smartsheet.com/articles/2476661-saml-sso-overview-enterprise
Manage Authentication Options for an Enterprise Plan (System Admin)- https://help.smartsheet.com/articles/516133-managing-authentication-options-enterprise-only-
Account-Level User Types for Multi-User Plans - https://help.smartsheet.com/articles/520100-user-types
Manage Users in a Multi-User Plan - https://help.smartsheet.com/articles/795920-managing-users-multiuser-plans-

Kind Regards

Sam

Smartsheet Support

Sign in to join the conversation!

Quick Links

Trending discussions

I have a Pro plan but I cannot create ANY reports
I have a Pro plan but I cannot create ANY reports. The system does not allow me to choose a folder, and consequently a sheet to create a row report and suggests an upgrade to Business or Enterprise. I'm quite new to Smartsheet and feel a bit disappointed with this limitation, or maybe I'm just doing something wrong. Alberto
Showing "stacked" data / Statuses of items by swimlane
I have multiple items that each have their own statuses and that roll up to "workstreams" or swimlanes. On the dashboard, I would like to show the progress of the items by swimlane without breaking it out into separate widgets for each. This would ideally be a stacked bar where each bar represented the Items and was broken…
Automated email with number of pending records
Hello, I use Smartsheet in such way that people are asked to provide data on many records and then that data needs to be approved by one other person (always the same person). I would like to set up an automation that, each morning, checks to see if there are records waiting to be approved, and if there are, sends an…