SSO, or Single Sign-On, is a single click solution that allows anyone in your company to open their dotloop account, and log you in automatically, all from within your company portal. If you are interested in developing SSO for your company, or are interested in more information, follow the steps below.
Is there an opportunity for a single sign on through your company portal?
You can reach out to your success manager or our support team for this next step. Let your success manager know what you are interested in activating the SSO on your dotloop account.
Example Email:
Hello [Success Manager name],
I am interested in a SSO for [integration].
You are now ready to begin developing your SSO. At this stage, you will need to provide your partner success manager with your .xml metadata, and then you’re ready to begin developing, testing, and releasing your SSO. A link to the dotloop metadata can be found here.
Note: We have linked a downloadable file at the bottom of this article that will guide you through the development process.
- Dotloop’s metadata: https://dotloop.github.io/
- SAML 2 documentation: http://docs.oasis-open.org/security/saml/Post2.0/sstc-saml-tech-overview-2.0.html
Q: Who will develop my SSO?
A: Dotloop will input your metadata file into our system, but you will need to bring a developer to the table for the rest of the development process.
Q: Where can I go for additional support?
A: The SAML 2 documentation linked above, as well as the Dotloop SAML SSO Guide attached to this article covers everything you need, but if you’re interested in guided SSO help, our Professional Services team has you covered: https://www.dotloop.com/products/professional-services/
Q: What is dotloop’s consumer service endpoint URL?
A: https://www.dotloop.com/my/saml/SSO/alias/dlSamlAlias
Q: What methods does dotloop support for establishing SSO?
A: Dotloop supports the use of either an SP-Initiated Flow, or an IDP-Initiated Flow.
Q: We’re testing our SSO and it’s asking the user to log in, is this normal?
A: Yes, this is expected behavior. Each user will be asked to log into their dotloop account the first time they initiate the SSO.
Q: A user clicked on the SSO, and it did not ask them to log in the first time, what should I do?
A: The first time a user clicks on the SSO, it requires that the user is not logged in to their dotloop account. Instruct the user to click on the Sign Out button within their dotloop account, and then return to the SSO link to attempt again.
Q: What do I do if someone set up their SSO with the wrong dotloop account?
A: Our support team is equipped to remove the erroneous SSO! Click on the chat icon below (or email support@dotloop.com after hours), and let the partner success consultant know that you need to remove the SSO from an account, then provide them with the email address of the account that is wrongfully linked to the SSO.