Overview

The article provides a guide on how to automate the creation of user accounts in PostBeyond using Single Sign-On (SSO) and how to manage these accounts by setting up a default group. It outlines the benefits of designating a default group for new users and provides step-by-step instructions on how to implement this configuration to ensure new users are added to the appropriate group within the company's PostBeyond instance.

 

Information

How PostBeyond User Accounts Can Be Generated via SSO

This section explains the process by which user accounts for PostBeyond can be automatically created through Single Sign-On (SSO) mechanisms.

 

Organizing SSO Generated Accounts Within Your Company's Instance

This section provides a solution for effectively organizing accounts created via SSO within your company's PostBeyond instance.

 

Setting Up the SSO Default Group

Here, we discuss how to configure a default group for users who are generated through SSO, ensuring they are added to the appropriate group in PostBeyond.

 

 

How are PostBeyond User Accounts Generated via SSO

If an employee is found within the IdP group of the PostBeyond SSO application and they do not have a PostBeyond user account, clicking SSO from the PostBeyond login page will automatically generate an account for them.

 

 

If a user's account is created using this method, they are automatically placed into the Core/All group of the instance. This default setting may not be ideal for your program, as this group typically has access to all content.

 

 

Solution

To avoid issues, admins have the capability to create and/or designate a group as the SSO default group.

 

Benefits of the Default SSO Group

• Regrouping users at a convenient time
• Easily identifying users created via SSO
• Ensuring that SSO users have access to general content rather than all content

 

Step 1: Create an SSO Default Group

You can call this anything, but make sure it is an obvious group for you and your team to quickly identify.

 

 

Step 2: Apply the Default to the SSO Default Group

You will notice a little person icon beside the All/Core group. This icon is automatically applied to the Core group of all instances and indicates that SSO-generated users will be moved here.

 

Click the 3 dots of the group you would like to make the default group, and select Make Default Group for New Users:

 

 

Complete!

Once this is done, you will notice the icon beside the group you've selected as the New user's default group.

 

 

Related Articles:

• Getting Started with PostBeyond!
• Use These Email Templates to Launch Your PostBeyond Program
• Sign Up for PostBeyond Platform Training!

 

FAQ

How are user accounts automatically generated in PostBeyond via SSO?

User accounts in PostBeyond are automatically generated via SSO when an employee, who is part of the IdP group for the PostBeyond SSO application, does not have an account and clicks SSO from the PostBeyond login page.

What is the default group for SSO-generated users in PostBeyond, and why might it be an issue?

The default group for SSO-generated users in PostBeyond is the Core/All group, which typically has access to all content. This may not be ideal as it could lead to organizational issues or inappropriate access levels for certain users.

How can admins create a default SSO group in PostBeyond?

Admins can create a default SSO group by first creating a group and then selecting the 'Make Default Group for New Users' option from the group's settings indicated by three dots.

What happens once a default SSO group is set in PostBeyond?

Once a default SSO group is set, all new users generated through SSO will automatically be placed in this group, and an icon will appear beside the group to indicate it's the new user's default group.