Getting Started
Configuring Your Account
Understand Billing
Publishing
Analytics & Reporting
Engagement
AI and Automation
Social Listening
Employee Advocacy
Sprout Integrations
Tagging
Customer Care
Salesforce Service Cloud
Influencer Marketing
Instagram
Facebook
X
Tiktok
Threads
WhatsApp
LinkedIn
YouTube
Pinterest
Getting Started
Configuring Your Account
Understand Billing
Publishing
Analytics & Reporting
Engagement
AI and Automation
Social Listening
Employee Advocacy
Sprout Integrations
Tagging
Customer Care
Salesforce Service Cloud
Influencer Marketing
Instagram
Facebook
X
Tiktok
Threads
WhatsApp
LinkedIn
YouTube
Pinterest

Influencer Marketing: Single Sign-on

Table of Contents

Single sign-on (SSO) is a secure, time-saving user authentication process that lets users instantly log in and out of multiple applications with a single account and one click. 

Influencer Marketing partners with an "identity provider" (IdP) or an external service that works to confirm the identities of users who request access to a private platform. Users with the appropriate access permissions authenticate and configure any connections to ensure the details of an identity provided by IdP are correct and trustworthy. SSO allows users to sign in  using any available method of authentication and without needing to set up an Influencer Marketing password.

Influencer Marketing's SSO support

Influencer Marketing supports SSO using OpenID Connect as the platform's service provider and Okta as the IdP.

Integrating with other IdP services (e.g. GSuite) is not supported at this time.

How to setup SSO

To use SSO, you must have administrative privileges in Okta and be an Admin in Influencer Marketing.

In Okta:

1. Log in to the administration panel of your Okta organization.

2. Add a new application.

  1. Click the Applications menu located at the top of the page.
  2. Click Add Application in the top left then click Create new App on the next page.
  3. Select Web and check OpenID Connect. Click Next.
  4. Add the following information:
    • Name : Sprout Social Influencer Marketing
    • Login redirect URL: https://influencer.sproutsocial.com/sso
  5. After confirming, edit the General Settings tab:
    1. Click Edit.
    2. Check the boxes for Authorization Code and Refresh Token.
    3. Click Save.

This page should be left open for later use.

In Influencer Marketing:

1. Log in to Sprout Social Influencer Marketing and navigate to Organization Settings .

2. Click Security and fill out the necessary data in the Single Sign-On section:

  • Client ID & Secret: Copy the values from the Okta webpage.
  • Issuer URL:
    • If you’re not using a custom Authorization Server, the URL should be in the following form: https://your-organization-name.okta.com/oauth2 
    • If you’re using a custom Authorization Server, you can find this URL in Okta’s API settings:
      • In Okta, hover over Security then click API, located at the top.
      • Select Authorization Servers and copy the Issuer URL. Paste this value into the corresponding box within Influencer Marketing.
  • Domain: Name of the domain used by members of your organization.
    • For example, if your user is user@sproutsocial.com, the domain is sproutsocial.com. 
    • You can add more than one domain, but a minimum of one is required. 

3. Click Enable.

  • Users may be redirected to Okta to confirm their identity and access rights. Once completed, the Okta settings will be enabled for the organization.

How to use SSO 

Once Influencer Marketing detects a domain with a configured SSO, the password bar will disappear and you’ll be prompted to continue with SSO.

Users with emails from configured domains will see the following login screen:

To continue, you’ll be redirected to Okta to log in and confirm your identity. One of the following actions will appear:

  • If ‌you've already logged into Influencer Marketing, you’ll be logged in to your account.
  • If you’re new to Influencer Marketing, a new account will be created for you with information pulled from the Okta user directory.
    • Your new account won’t automatically be assigned to a team and will come have a default set of rights.

If a user is blocked in the Okta user directory, they won't be able to access Influencer Marketing.

What if a user has a custom domain?

If a user in the Okta directory has a custom domain that differs from the one that’s been configured for the domain, they can still access Influencer Marketing using SSO. They’ll need to log in using the following URL: 

Log in with SSO


Using their email address and Organization identifier, which is supplied by the Org Admin or Influencer Marketing support, a user can proceed with SSO login and follow the workflow above.

Table of Contents