Single Sign-On
      Back to home
      1. Help Center
      2. Integrations
      3. Single Sign-On

      Getting Started with Single Sign-On

      This article will run you through how to set up SSO with Holistiplan

      💡 Please keep in mind that SSO with Holistiplan is Service Provider (SP) Initiated only. When you complete your setup on the Holistiplan side, a "Magic Link" will be generated for you. This is a direct SSO sign-on link that can be used in your Identity Provider to mimic an IDP initiated flow if desired. 

      Identity Provider Setup

      To setup SSO between your Identity Provider and Holistiplan, please first create a new application in your Identity Provider that is SAML2.0 enabled. Once created please make sure that the SAML application is configured with the information below:

       

      Entity ID: https://app.holistiplan.com

      Assertion Consumer Service (ACS) URL: https://app.holistiplan.com/sso/complete/saml/

      Name ID Format: emailAddress

      Signing Algorithm (If asked): SHA256

      Mapped Attributes: email

       

      Once this has been configured download your IDP metadata file and save it. This will be needed for the configuration on the Holistiplan side.

      Holistiplan Firm Admin Setup

      1. Open your Holistiplan Application and navigate to Settings > Security Settings. Scroll to the bottom of the page and make sure that SSO Self Serve is enabled as seen below.

      Screenshot 2025-03-17 at 10.16.18 AM

      2. Once this has been enabled scroll back up where you should now see the SSO configuration box where you can begin your configuration.

      Screenshot 2024-12-16 at 8.50.39 AM

      3. Select your Identity Provider. If you don't see your's listed or you use an internal Identity Provider, please select Internal/Custom/Other as your IDP 

      Screenshot 2024-12-16 at 10.21.18 AM

      4. Next click on the IDP Settings button

      Screenshot 2024-12-16 at 10.22.01 AM

      5. In the exposed modal, click on Import from XML and upload the xml metadata file we downloaded from your Identity Provider setup.

      Screenshot 2024-12-16 at 10.24.11 AM

      This will auto-populate the following fields, and should look something like this afterwards. Then press Submit.

      Screenshot 2024-12-16 at 10.24.22 AM

      6. Finally either select Enable SSO or SSO Only (no passwords) based on your firms preference

      Screenshot 2024-12-16 at 10.24.36 AM

      After this your setup is complete! Feel free to log out and log back in via SSO.

      If you're still experiencing any issue or having any trouble with this setup, reach out to support@holistiplan.com