Definition
Single Sign-On Settings refers to a set of configuration options in Salesforce that control how a specific feature or area of the platform behaves. Administrators adjust these settings through the Setup menu to tailor functionality to their organization's requirements.
Real-World Example
an admin at Redwood Financial recently implemented Single Sign-On Settings to ensure the Salesforce org runs smoothly and securely. They configure Single Sign-On Settings during a scheduled maintenance window, test it in a sandbox first, and then deploy to production. The result is tighter security and a more streamlined experience for all 200 users in the org.
Why Single Sign-On Settings Matters
Single Sign-On (SSO) Settings in Salesforce Setup allow administrators to configure federated authentication so users can access Salesforce using credentials from an external identity provider like Okta, Azure AD, or Ping Identity. This eliminates the need for separate Salesforce passwords, reducing login friction and the volume of password reset requests. SSO Settings support SAML 2.0 and OpenID Connect protocols, letting administrators map identity provider attributes to Salesforce user fields. Properly configured SSO centralizes authentication control and enforces the organization's existing security policies.
As organizations scale and adopt more cloud applications, managing separate credentials for each system becomes a security liability and an administrative burden. Single Sign-On Settings become critical infrastructure because they enforce consistent password policies, enable centralized account deactivation when employees leave, and provide audit trails for authentication events. Without SSO, a terminated employee's Salesforce access might persist long after their corporate account is disabled, creating a serious security gap. Organizations with mature SSO implementations also see fewer help desk tickets for password resets, which can represent 20-40% of all IT support requests.
How Organizations Use Single Sign-On Settings
- Granite Financial Group — Granite Financial Group configures Single Sign-On Settings to integrate Salesforce with their Azure AD instance, enabling 2,000 financial advisors to access Salesforce through their corporate Windows login. When an advisor logs into their laptop in the morning, they automatically gain Salesforce access without entering additional credentials, while MFA is enforced at the Azure AD level.
- Horizon Pharmaceuticals — Horizon Pharmaceuticals sets up SSO with Okta to meet FDA 21 CFR Part 11 compliance requirements. Every Salesforce login is recorded through Okta's audit trail, providing the electronic signature traceability that regulatory auditors require. When a researcher leaves the company, disabling their Okta account immediately revokes Salesforce access.
- Streamline Education — Streamline Education configures SSO Settings to connect their Salesforce org with Google Workspace, allowing 500 staff members to access Salesforce through their school Google accounts. The IT team maps Google group memberships to Salesforce permission sets, ensuring that when a teacher moves to an administrative role, their Salesforce permissions update automatically.