SpyCloud Guides
spycloud.comGet a demo
Start typing to search…

VIP Guardian and SSO

If your organization has Single Sign-On (SSO) enabled, the workflow for VIP Guardian may differ from the standard flow.

Since SSO is applied org-wide, this authentication method will also be applied to VIP Guardian invites if the invited users have email addresses associated with your organization’s domain.

🧭 Options for Managing Invitations & Users

Option 1: Use Organization Email (SSO)

For users with email addresses under your organization’s domain (e.g., [email protected]), VIP Guardian will automatically enforce SSO.

  • Ensure the SpyCloud application is assigned to them in your SSO provider.
  • Users will be prompted to authenticate using SSO.
  • Once assigned, they can seamlessly proceed with the SSO flow.

Option 2: Use Personal Email

If you’d prefer to bypass SSO, users can sign in with a personal email (e.g., Gmail, Outlook).

  • Add one personal account per user during enrollment.
  • After signing in, users can add additional emails themselves.
  • Be sure to include the personal email in the enrollment section before sending the invite link.

🙋 Need Help?

If you have any questions or need assistance, please reach out to our Support Team using the support form in the SpyCloud Portal or you can email [email protected].

Updated 2 months ago