Set Up an Identity Provider
LogMeIn offers Enterprise Sign-In, which is a SAML-based single sign-on (SSO) option that allows your users to log in to their LogMeIn product(s) using their company-issued username and password, which is the same credentials they use when accessing other systems and tools within your organization (e.g., their corporate email, work-issued computers, etc.). This provides a simplified login experience for your users while allowing them to securely authenticate with credentials they know.
Once you have set up an organization, the next step is to finalize the trust relationship between your company and LogMeIn to enable Enterprise Sign-In (SSO) for your users. An Identity Provider (IdP) is a trusted online service or website that creates and maintains user identity information within a distributed network while also acting as a means of authentication for these users to access services. This will allow users in your validated email domains to be authenticated for sign-on through your Identity Provider.
If you have not already established an Identity Provider, you can set up one of the following:
- Implement the Microsoft Active Directory Federation Services (AD FS)
Active Directory Federation Services is a feature of the Windows Server operating system that extends user's Windows sign-on access to other applications outside the corporate network. You can configure AD FS to work as an Identity Provider for LogMeIn's products. Learn how to configure AD FS 2.0 or AD FS 3.0.
- Use a third-party Identity and Access Management Provider that provides single sign-on
Many third-party Identity and Access Management partners offer single-sign on as part of their feature set. Learn how to configure Enterprise Sign-In with your Identity and Access Management Provider.
- Set up a custom configuration using the Organization Center
You can use the Identity Provider tab in the Organization Center to set up a custom SAML configuration. Learn how to set up a custom Enterprise Sign-In configuration.
Once you have established an Identity Provider, you will need to add it to the Organization Center to indicate where you want your users to go to sign in to their assigned LogMeIn products.