Managing SSO Users
📍 To access Users, go to: More > Users
🛡️ Note: This article only covers managing SSO users who have already logged into RedFlag. To add a new user, update a user role, or delete a user, please refer to the Microsoft SSO Configuration or SAML Configuration articles.
If you have enabled Single Sign-On (SSO) using Azure OpenID Connect or SAML, user accounts are managed through your external authentication provider. This integration simplifies account management and enhances security by centralizing login credentials and access control.
What This Means
- Users will sign in via your connected SSO provider (Azure AD, OpenID, or SAML).
- User permissions, roles, and access are controlled by your authentication provider.
- You do not need to manually create or manage user credentials within RedFlag.
Additional Feature Access in RedFlag
After a user signs in via SSO for the first time, you will still need to assign access to certain features within RedFlag, including:
Restricted Folders
If your location uses restricted folders, click Restricted Folder to assign folder access to the user.
Group Access (Editor Role Only)
For users with the Editor role, click Groups to define which recipient groups they can message.
Chat Access
If 2-way chat is enabled and the user needs access:
- Check the box next to Chat.
- Click Inboxes to select chat inboxes.
- Selecting All grants access to current and future inboxes.
- Selecting specific inboxes limits access to only those selected.
To assign these features:
- Go to the Users page.
- Click on the row of the user’s profile.
- Edit their permissions as needed.
🛡️ Note: These permissions are managed within RedFlag and are not pulled from your external SSO system. For detailed steps, see Add User.