Administrator

How do I enable Single Sign-On (SSO) in Buzz?

  • Updated:
    info_outline
    Created:

Enable users to sign into Buzz with their school credentials.

Buzz supports the use of Single Sign-on (SSO) features to allow users to sign into one application (for example, a student information system) and be automatically logged into Buzz without needing to re-enter credentials. This feature can help eliminate the need for teachers and students to remember multiple credential sets.

Configure SSO

  1.  Open the More menu in Domain > Details.  
  2. Select Domain settings.
  1. Open the authentication Type dropdown under Authentication:
If you use CAS
  1.  Provide the CAS Server URL.
  2. Provide a Logout redirect URL if you want users to be taken to somewhere other than the Buzz login screen when they sign out.
  3. Indicate if you want to Logout of CAS when logging out of Buzz.
  4. Indicate if you want to Prevent users from using Buzz credentials.
    • If you don't select this, you have the option to Allow users to create their own accounts rather than requiring  they be created for them. You will also be able to set up your password policy.
  5. Save.
If you use Domain

The Domain Authentication Type uses the SSO options and Users of the domain specified in the Domain.

Example

An example district houses all of their users in a single domain; however, they want their users to have different experiences based on which school they attend within the district (e.g., age-appropriate features, branding, landing page). They could create a subdomain for each school and use the Domain Authentication Type pointing to the district domain. Then the students could sign in through their school domain to get the right experience, while all of their user information (and SSO configuration) is centralized on the district domain.

  1. Choose the Domain Type.
  2.  Provide the Domain ID where the users and SSO configuration you want to use are located.
  3. Indicate if you want to Allow users to create their own accounts rather than requiring  they be created for them.
  4. Set up your password policy.
  5. Save.

Note: The Domain Authentication Type does not support SAML v3 configurations. It does support previous SAML versions.

If you use SAML

 Do not choose the "old version" of SAML

  1. Click Add identity provider (IdP).
  1. Provide the Login prompt. This is what appears on the login button. If you have only  one IdP, this defaults to Login, if you have more, you can label them appropriately.
  2. Upload the idp-meta XML file. This is provided by your IdP.  
  3. The Metadata resource path and Provider ID are automatically populated.
  4. Click Done.
  1. All IdPs are listed once you've added them, and you can add more from here.
  2. Provide a Logout redirect URL if you want users to be taken to somewhere other than the Buzz login screen when they sign out.
  3. Indicate if you want to Prevent users from using Buzz credentials.
    • If you don't select this, you have the option to Allow users to create their own accounts rather than requiring  they be created for them. You will also be able to set up your password policy.
  1. Save.
forum

Have a question or feedback? Let us know over in Discussions!