Loading
Salesforce now sends email only from verified domains. Read More
Identify Your Users and Manage Access
Table of Contents
Filter by (0)Add
Select Filters

          No results
          No results
          Here are some search tips

          Check the spelling of your keywords.
          Use more general search terms.
          Select fewer filters to broaden your search.

            Search all of Salesforce Help
            Search all of Salesforce Help
            View and Edit Single Sign-On Settings

            You are here:

            1. Salesforce Help
            2. Docs
            3. Identify Your Users and Manage Access

            View and Edit Single Sign-On Settings

            After you configure your Salesforce org to use SAML, you can manage the SAML configuration from the Single Sign-On Settings page.

            Required Editions

            Available in: both Salesforce Classic and Lightning Experience

            Federated Authentication is available in: All Editions

            Delegated Authentication is available in: Professional, Enterprise, Performance, Unlimited, Developer, and Database.com Editions

            Authentication Providers are available in: Professional, Enterprise, Performance, Unlimited, and Developer Editions
            User Permissions Needed
            To view the settings: View Setup and Configuration
            To edit the settings:

            Customize Application

            AND

            Modify All Data

            From Setup, in the Quick Find box, enter Single Sign-On Settings, and then select Single Sign-On Settings.

            After the SAML configuration is completed, the Single Sign-On Settings page displays the generated URLs and OAuth 2.0 token endpoint.

            Field Description
            Salesforce Login URL For SAML 2.0. The URL associated with the login for the Web SSO OAuth assertion flow. This URL appears if you configured SAML with “Assertion contains the User's Salesforce username” for SAML Identity Type and “Identity is in the NameIdentifier element of the Subject statement” for SAML Identity Location.
            Salesforce Logout URL For SAML 2.0. The Salesforce logout URL that users are directed to after they log off. This URL appears if you didn’t specify a value for Custom Logout URL.
            OAuth 2.0 Token Endpoint For SAML 2.0. The ACS URL used when enabling Salesforce as an identity provider in the Web SSO OAuth assertion flow.

            From this page you can take these actions:

            • Click Edit to change the existing SAML configuration.
            • Click SAML Assertion Validator to validate the SAML settings by using a SAML assertion provided by your identity provider.
            • Click Download Metadata to download an XML file of your SAML configuration settings to send to your identity provider. The identity provider can then upload these configuration settings to connect to your Experience Cloud site. This action is enabled only if your identity provider supports metadata and if you're using SAML 2.0.

            See Also

             
            Loading
            Salesforce Help | Article