Single Sign-On

1582 views 28 October 2021 0

Notice: SSO feature is available in our Pro plan. As an owner, you can upgrade your plan at any time via the Subscription panel.

What is SSO (single sign-on)?

Nowadays, almost every website, service, or app requires a login and password to gain access. With so many passwords to remember things can get confusing. People often forget passwords so they tend to write them down, use simple ones or reuse the same for many systems. That’s a security risk you don’t want in an enterprise environment. Also, scaling companies demand a secure platform and absolute control over who can access and modify their data — no matter what software application they are accessing.

With Single Sign-on, or SSO for short, agents have a single login across all apps your team is using. It makes life easier and more secure for everyone and reduces the administrative overhead.

SSO is available on the Pro plan. TimeCamp supports SSO through SAML 2.0, which means that you can integrate with most major Identity Providers such as OneLogin or Okta or any other SAML 2.0 compliant company.

List of native SSO providers

How to configure

TimeCamp supports SSO via SAML 2.0 standard.

To enable SSO authentication, you need to set a connection between TimeCamp and your Identity Provider. Start by getting the following from your Identity Provider:

  • SSO URL (also called a Login URL, Single Sign-On URL),
  • issuer URL (also called Entity ID),
  • an X.509 certificate

How to enable:


Go to Settings > Add-ons > Single sign-on





Select the Identity Provider you’re using in your company or choose to configure your own SAML implementation.





You’ll get a screen with instructions. Follow the steps to find the pieces of information needed for further setup.


Click on the Save settings button to enable SSO.

Additional information some SAML providers require
  • ACS URL:
  • Entity ID:

How to login

Once SSO is enabled, users log in to TimeCamp by entering their email addresses. It redirects them to the Identity Provider’s sign-in URL, where they need to enter their SSO credentials.

On the TimeCamp login page, click on the Log in with SSO link, provide your login, click Log in and you’ll be redirected to the SSO login page.

If you’re already authenticated, you’ll be logged in automatically.

Have we made a good job with this post?