All Collections
Command
SAML/SSO
Enable SAML for Your Command Account
Enable SAML for Your Command Account

Learn how to enable SAML for your Verkada Command organization

Updated over a week ago

Before you begin

To use any Security Assertion Markup Language (SAML) 2.0 integration, you must:

  1. Generate your client ID.

  2. Be an Organization Admin of the organization where you want to configure SSO.

How it works

Step 1: Begin setup

  1. Go to Verkada Command > All Products > Admin.

  2. Under Privacy & Security > Authentication & User management, select Single Sign-On (SSO) Configuration.

  3. Select Begin Setup.

    You should see your client ID and the fields that you entered into your IdP.

Note: To confirm which region you're located, please refer to where your organization was created for Verkada.

Step 2: Upload SAML XML metadata

You will get a warning that the file has not yet been validated.

Before you can verify extensible markup language (XML), you must add domains. You cannot require single sign-on (SSO) until the XML has been verified.

  1. In the Verify Metadata section, click Add Domain.

  2. If the login tests fail, review your metadata file and associated domains.

    You may see this common error message: app_not_configured_for_user or other related messages. This can happen when your browser has cached the apps you have access to from when you first logged in and where you had just created the Verkada app with your IdP.

  3. If necessary, resolve any issue by using an incognito browser to run the login test, or log out of all services, while clearing your cache and cookies, then retry.

  4. Once verified, you should be able to toggle on Require SSO to sign in.

Step 3: Enforce SSO

After configuring SAML for your Verkada Command organization, you have the option to enable SSO Enforcement.

What this means for you:

  • Anyone using the configured email domain has to go through the SAML process to sign in.

  • Allows for greater control over user access.

  • If there is an issue with SAML, users are unable to sign in, unless the issue is either resolved or SSO Enforcement is disabled.

Learn more


Need more help? Contact Verkada Support

Did this answer your question?