Hi everyone, I was wondering if any of you had any luck fielding an issue we are experiencing. We have an extended enterprise, and we have two SAML identity provider IDs for each domain. This means that is a person finds themselves on the wrong domain and attempts to log in, they will receive an error. These users are on different domains for security reasons, so they have their own separate profiles. Is there any way that:Docebo supports a single login page not tied to either of our portals, authenticate the user, then parse information from the SAML response to be able to pass the authenticated user to the correct portal? We can update the log-in page to better redirect users, such as have verbiage and the correct SSO links to sign in. I understand allowing the SSO links is a part of the SAML settings, so is there a way to achieve this?Thank you!

Question

Handling Sign in Errors with SSO and Extended Enterprise

Forum|Forum|7 months ago
May 8, 2025
2 replies
98 views

hailey.gebhart
Helper III

Hi everyone,

I was wondering if any of you had any luck fielding an issue we are experiencing. We have an extended enterprise, and we have two SAML identity provider IDs for each domain. This means that is a person finds themselves on the wrong domain and attempts to log in, they will receive an error. These users are on different domains for security reasons, so they have their own separate profiles.

Is there any way that:

Docebo supports a single login page not tied to either of our portals, authenticate the user, then parse information from the SAML response to be able to pass the authenticated user to the correct portal?
We can update the log-in page to better redirect users, such as have verbiage and the correct SSO links to sign in. I understand allowing the SSO links is a part of the SAML settings, so is there a way to achieve this?

Thank you!

M

+1

mstrom
Forum|Forum|7 months ago
May 9, 2025

Hi @hailey.gebhart

If you have the Enable Extended Enterprise Login Restriction setting activated in extended enterprise settings, then the user will only receive an error message without any explanation as to why. However if you deselect this option, and the user attempts to login to the wrong domain, they will get an error but will also be shown a list of domains they are authorized to access, and the option to select one. Not sure if this helps with what you are looking to achieve.

Login Redirects for Extended Enterprise

Like

hailey.gebhart
Author
Helper III
Forum|Forum|7 months ago
May 14, 2025

Hi @mstrom

Thank you for this information. Unfortunately, we are using an SSO, so the users get redirected to log in with the SSO instead of logging in on Docebo, so I am not sure if this setting will apply to the log in page. I may do some testing, however.

Like

Still haven't found what you're looking for?

Sign up for Docebo Community

Log in to Docebo Community

Scanning file for viruses.

This file cannot be downloaded