Single Sign On

Vouch supports Secure Assertion Markup Language 2.0 (SAML), which allows you to provide single sign-on (SSO) for your Vouch account using enterprise identity providers such as Active Directory and LDAP.

By using SAML, a user is automatically verified with the identity provider when they sign in. The user can then access the Vouch Platform without being prompted to enter separate login credentials.

Key benefits of Vouch's SSO offering include:

  • Clients are able to enforce their respective password standards
  • Access to Vouch is routed through the client’s Identity Provider (IdP)
  • Clients are able to revoke access to any system, including Vouch, by locking the account and/or changing the password
  • Clients can implement their own Two-Factor Authentication (2FA) or Multi-Factor Authentication (MFA) standards
  • End Users are able to leverage the same credentials they use for other systems
  • Clients are able to implement their own polices around Password resets
  • Staff are discouraged from sharing their accounts

Configuration Details

Configure Vouch service provider with attributes as follows

Single Sign on URL:

Audience URL (Entity ID):

Audience Statement:


Vouch Single Sign On (SSO) offering is designed to work with organisations own Identity Provider services, such as Active Directory and LDAP, as well as online SAML services, such as Okta or Azure.

To setup Single Sign On (SSO) for your organization, navigate to the General Settings section within your Vouch Account.

From here you can enable SSO on the workspace and then copy the provided Single Sign on URL: and Audience URL (Entity ID): values and add to your IDP.

Depending on your IDP, this should generate either a Metadata file or URL which you can then add to finish the setup process.

For specific guides for Okta and Azure, click on the respective links below: