Convert a SAML SSO-only or SAML SSO account user

Before you begin

Before you begin, make sure these prerequisites are met:

  • You have SAML enabled for your account.
  • You are an administrator in your account (or a manager in your account with the Allow access to SAML settings permission).

See SAML single sign-on prerequisites.

To convert a SAML SSO-only user to an account user, the administrator or manager can't be a SAML SSO-only type user.

Convert a SAML SSO user

  1. Go to the user details page

    1. In the sidebar menu, click Account > Users.
    2. On the Users page, locate the user and click the user's Name link.

  1. Convert the user

    In the User Access sections, use one of these options to convert the user account:

    • Convert an account user to a SAML SSO-only User
      To convert an account user to a SAML SSO-only user, check the Only allow this user to log in through SAML SSO box.
    • Convert a SAML SSO-only User to an Account User
      To convert a SAML SSO-only user to an account user, uncheck the Only allow this user to log in through SAML SSO box.

When you convert a user to a SAML SSO-only user, that user's CertCentral password gets revoked. That means they can no longer sign in to their CertCentral account directly via the DigiCert URL.

  1. Save changes

    When you are finished, click Update User.

What's next

Users who are converted to account users will be sent an email with instructions for completing their account setup and signing in.

Users who are converted to SAML SSO-only users will be sent an email with the custom SSO URL for signing into their account. They can also access the custom SSO URL from the DigiCert Account Login page.

Are you using an IdP initiated login URL to sign in to your CertCentral account? If you are, you need to provide the new user with this IdP initiated URL or application.

About

DigiCert is the world's leading provider of scalable TLS/SSL, IoT and PKI solutions for identity and encryption. The most innovative companies, including 89% of the Fortune 500 and 97 of the 100 top global banks, choose DigiCert for its expertise in identity and encryption for web servers and Internet of Things devices. DigiCert supports TLS and other digital certificates for PKI deployments at any scale through its certificate lifecycle management solution, CertCentral®. The company is recognized for its enterprise-grade certificate management platform, fast and knowledgeable customer support, and market-leading security solutions. For the latest DigiCert news and updates, visit digicert.com or follow @digicert.

©2020 DigiCert, Inc. All rights reserved. DigiCert, its logo and CertCentral are registered trademarks of DigiCert, Inc. Norton and the Checkmark Logo are trademarks of NortonLifeLock Inc. used under license. Other names may be trademarks of their respective owners.