My company wants to enable SSO with SAML to our inhouse supported provider. When the login is entered, it will then redirect to our authenticator for credential authorization. That authenticator page is only accessible from IPs within our VPN range. This isn't an issue with desktop logins as we are required to run the software to connect to our VPN.
The question has to do with mobile logins. We currently use the Opsgenie mobile apps on our phones and/or tablets. Those phones and tablets are not provided by the company and do not have access to the company VPN. From what I understand, all logins will use SSO once it is set up and activated. Is there a work around that would allow access to our account for at least managing notifications via the mobile app in this situation? Would there be something like an admin account that we could use or something else?
Hi @James Gordon ,
Happy to help!
With Opsgenie SSO, the logins are either/or, so all users would be required to login via that method. We have an open Feature Request here for a hybrid system in which some users can bypass SSO to login with local access https://jira.atlassian.com/browse/OPSGENIE-297. But at the moment, SSO will be required across the user base if enabled.
If a mobile VPN app is out of the question, then there will be some trouble in using the app due to SSO being enabled. As a workaround for mobile notifications, we would recommend using SMS in lieu of the app, but they would still need to login via Desktop.
Please let us know if you have any follow up questions!
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.