Last Updated: Nov 25, 2024
Overview
This article explains a potential cause for SSO across two applications no longer working with the Organization feature enabled.
- For example, it is expected that after a user authentications to one application, they will not be prompted for authentication when logging into a second application within the organization.
Applies To
- Organizations
- Login Flow
Cause
The Login Flow was set to “Prompt For Organization.”
The Universal Login Experience will ask for the Organization and then user credentials if the “organization” parameter is not specified upon making a request.
Solution
There are two possible solutions.
- Use “Prompt For Credentials”.
- If the user belongs to one single organization:
- The user won’t be prompted for Organization upon SSO.
- If the user belongs to multiple organizations:
- The user has to choose which organization to use upon logging in. However, the user will not have to input the username and password again.
- Pass the “organization” parameter to the /authorize endpoint if the application knows which organization to use beforehand (either Organization ID, or if it has been enabled, the Organization name).