β±οΈ The essentials in 3 minutes
What SSO is and why it matters for your Didask platform.
The 3 supported SSO protocols (SAML, OIDC, Ypareo) and how they differ.
How setup works, in 4 steps.
π§ Why SSO matters on Didask
On a training platform, every forgotten password means a learner who can't get started and an admin spending time on resets. SSO lets your users log in to Didask using their existing company account. No new password to remember, nothing extra to manage.
For your IT team, SSO is also a governance tool. Access is managed centrally through your identity provider (such as Entra ID, Okta, or Google Workspace), which simplifies administration and strengthens security.
π SSO setup is included at no extra cost on Didask.
π What is SSO?
SSO, or Single Sign-On, is an authentication method that lets users access multiple applications with a single set of credentials. Once logged in, they move between connected apps without re-entering their password.
π A familiar example: When YouTube lets you sign in with your Google account, that's SSO in action.
Why organizations use SSO:
It centralizes access without spreading credentials across multiple tools.
It simplifies user management for IT teams.
It strengthens security when paired with a secure identity provider, through centralized access management, consistent enforcement of security policies, and fewer authentication-related human errors.
π Benefits at a glance
Who | What they gain |
π§ Admins | Centralized access management, no redundant accounts, and no more password reset requests. |
π Learners | One less password to remember and instant, frictionless access to their courses. |
π° Your budget | SSO setup is included at no extra cost. |
π Choosing the right SSO protocol
Didask supports three SSO options, depending on your identity provider and organizational setup.
SAML 2.0
The most widely used protocol in large organizations.
Compatible with most major identity providers, including Entra ID (formerly Azure AD), ADFS, and Google Workspace.
The right choice for organizations with a mature IT infrastructure.
OIDC (OpenID Connect)
A more modern protocol, increasingly common across identity providers.
A good fit if your identity provider supports it alongside SAML.
Ypareo
Designed specifically for training organizations using the Ypareo ERP system.
Creates a seamless connection between Ypareo's administrative management and Didask.
π Protocol comparison
Feature | SAML 2.0 | OIDC | Ypareo |
Authentication via identity provider | β Yes | β Yes | β Yes |
Automatic user creation (for users not yet in Didask) | Optional | Required | Required |
Automatic access to content via a course link or learning program | Optional | Optional | Required |
Group mapping between your identity provider and Didask | Optional | β No | β No |
βοΈ Setting up SSO in 4 steps
Setup is a collaborative process between your team and ours.
Step | Name | Goal |
1 | Scoping | Confirm that SSO addresses a real need for your organization, and decide whether group management should be handled through SSO. |
2 | Information exchange | Your side: share a technical contact and confirm which SSO protocol you'll be using. Our side: provide the SSO documentation needed for configuration. |
3 | Creating the SSO application | Your team creates the SSO application in your identity provider and shares the technical details with us. We complete the configuration on our end. |
4 | Testing and go-live | Your team verifies that everything works as expected, then flips the switch to go live. |
π‘ Initial configuration and testing can be carried out on a staging environment before go-live.
π Technical resources
The SSO technical documentation is available in the Didask API docs.
You also have access to a personalized page with all URLs pre-configured for your platform, available at: https://YourPlatform.didask.com/api/v1
π‘ If you'd like to go further and enforce SSO login for all users, removing the email and password fields from the login page entirely, see: π Enforce SSO Login on Your Platform.
β Frequently asked questions
Question | Answer |
Can we offer both SSO and standard email/password login at the same time? | β Yes. Didask supports both options simultaneously. |
Can we connect multiple SSO providers for different groups or entities? | β Not at this time. |
Can we test SSO before going live? | β Yes. A test environment is available before full deployment. |
Can SSO be disabled or revoked? | β Yes. The change is fully reversible at any time. |
Go further:
Keywords: SSO, Single Sign-On, SAML 2.0, OIDC, OpenID Connect, Ypareo, Entra ID, Azure AD, ADFS, Google Workspace, identity provider, centralized authentication.
Still have questions? Reach out to us at [email protected]. We're always happy to help! π¬