Learn how to set up SAML 2.0 Single Sign-On to secure your organization's access to AWI.
Single Sign-On (SSO) allows your employees to log in to AWI using your organization's existing identity provider (like Okta, Azure AD, or Google Workspace). This improves security by centralizing authentication and simplifies the login experience for your team.
A market leader in identity management. Highly recommended for its ease of SAML configuration.
The standard for Microsoft-centric organizations. Seamlessly integrates with O365 credentials.
Enables SSO for teams already using Google for Business apps and email.
A versatile platform that supports simple, secure access for all employees.
In your IdP dashboard (e.g., Okta Admin or Azure Portal), create a new SAML 2.0 application. Name it 'AWI Performance' and upload the AWI logo for easy recognition by your users.
Navigate to Settings > Enterprise SSO in AWI. Download the 'SAML Metadata XML' file. Upload this file into your IdP to automatically configure the ACS URL and Entity ID. Alternatively, manually enter the details shown on the settings page.
Configure your IdP to send the user's email address. It MUST be mapped to the 'NameID' attribute in the SAML response. AWI uses the email address to match the incoming login to the correct user account.
Copy the Entry Point URL, Issuer ID, and the Public X.509 Certificate provided by your IdP and paste them into the AWI settings. Click 'Save Configuration' to activate the connection.
Our enterprise engineering team is available to join a call with your IT department to assist with complex setups.
Contact Enterprise Support