STEP 3: Enabling to Use Only SAML Authentication When Logging In

Article Number:02036

You can configure to use only SAML authentication when logging in to
If this setting is enabled, users will not be able to log in to the service using password authentication. The setting is disabled by default.

Areas Affected by This Restriction

Services and Apps

You will not be able to use the following services and apps if you enable "Require SAML authentication".

API for

If you enable "Require SAML authentication", running API with password authentication will be allowed to only Users & System Administrators.
If you don't want to restrict users to run API, leave "Require SAML authentication" disabled.
For details on API, refer to cybozu developer network.

Enabling the Restriction to Use Only SAML Authentication When Logging In

  1. Configure SAML authentication.
    For details, refer to Configuring SAML authentication
    You cannot go to Step 2 without completing the SAML authentication configuration.

  2. Click gear shaped administration menu icon in the header.

  3. Click "Users & System Administration".
    Accessing Users & System Administration

  4. Click Login. Screenshot: "Login" is highlighted

  5. Confirm that "Enable SAML authentication" is enabled.

  6. Select "Require SAML authentication".
    Screenshot: "Require SAML authentication" check box is selected

  7. Notify users that they need to enter the login information of the SAML IdP when they log in to

URL to Skip SAML Authentication

Users & System Administrators can still log in to using password authentication even if the "Require SAML authentication" option is enabled.
The URL below is used to avoid the situation where no one can log in to after the failure of SAML authentication. You cannot disable this feature.

  1. Access the URL below.

  2. Log in to using the login name and password registered in Users & System Administration.