Support
  • Introduction
  • Advantages
  • Implementation
  • Procedure
  • Notes
  • Google biz account

SSO Login

Single sign-on (SSO) is an authentication scheme allowing users to log in with a single ID and password to any related yet independent software systems. Our travel solution with SSO login integration, enables any organization's internal login systems to be connected to myBiz, authorizing users to log directly into our systems.

Advantages of SSO Login Integration

  • 1Employees can access the myBiz portal without re-registering on the system.
  • 2SSO with myBiz reduces password fatigue for the employees of the organization.
  • 3myBiz SSO integration solutions mitigate risks of access to 3rd-party sites ('federated authentication') because user passwords are not stored or managed externally.

Implementation on myBiz

SSO on myBiz is enabled using SAML 2.0

Procedure

  • 1myBiz works as a client of SSO, and in order to give this access, the IT team of the client would need to configure the MMT SAML integration document in their IT systems.

    • SAML can be downloaded from   https://mybiz.makemytrip.com/saml/metadata

    Copy the above URL and paste it to download the same.

  • 2The client will issue a similar SAML file to the myBiz team, which will be configured inside the myBiz systems.
  • 3Organizations which are on SSO would be marked as single sign-on organizations in the MMT system.
  • 4Self-sign-up for SSO-enabled organizations is, by default, switched off.
  • 5SSO integration with myBiz currently does not support organizations working on a Hybrid model where some percentage of the employees use their personal accounts while others use the company email.

Notes

  • 1Users of this organization will not be able to sign up from the signup page of myBiz.
  • 2Since no password has been generated at myBiz end, users will not be able to log in without SSO login on myBiz.
  • 3Multi-Domains under a single organization is not supported.
  • 4Details for configuring SSO:
    • Identifier (Entity ID): mybiz-mmt-sso
    • Reply URL (Assertion Consumer Service- URL): https://mybiz.makemytrip.com/saml/SSO
    • Relay State (Optional): we don't have this in SSO
    • Logout Url (Optional): we don't have logout functionality via SSO
    • Sigon URL format- https://mybiz.makemytrip.com/sso/login?user=test@test.in
    • SAML Signing Algorithm: SHA-256 (default)
    • SAML Signing Option: Sign SAML assertion (default)
    • SAML User Identifier (aka. NameID, Name Identifier): Email address
    • Name ID tag: mybiz expects email of the user under NameID tag in the response from IDP.

SSO Login in case of a Google Business account

  • No configuration changes would be required for the same.