Status.io supports single sign-on (SSO) authentication for team member accounts.
SSO Integration Guides
SSO works with most SAML-based Identity Providers. Set up guides are available for the most widely used Identity Providers.
FAQs
Which Identity Providers are supported?
Any Identity Provider that supports the SAML protocol should work with Status.io. Guides are available for the most widely used Identity Providers. When setting up an Identity Provider without a guide, make sure to use the email address as the user identifier.
Does SSO control access to viewing a status page?
This document covers SSO for team members to access Status.io and manage the status page. Learn more about using SSO for viewing a private status page here.
How does the status page owner account work when SSO is enabled?
The owner for each status page must be a local Status.io account and is used for account administration such as billing and team SSO configuration.
The owner account can belong to multiple teams as an owner or regular team member.
The owner is also used as a backup to access Status.io in the event that the SSO Identity Provider is experiencing an outage preventing SSO team members from signing in.
We strongly recommend the owner account enable MFA with a security key.
How to disable SSO for a status page?
Use the Disable SSO button in the Team settings within the Dashboard. All SSO team members will be removed automatically. If you have multiple status pages, SSO must be disabled for each status page separately.
Can SSO users access the Developer API?
The Developer API must be accessed by local user accounts. SSO team members will not receive API credentials.
How to use multiple status pages with the same SSO organization?
Choose unique Organization IDs for each status page to separate access.
Optionally use identical Organization IDs across multiple status pages to allow team members access to each status page. When SSO is enabled for a status page with the same Organization ID as another status page, any SSO team members from the other status page will automatically be added.
How to use a mix of SSO and non-SSO user accounts?
Non-SSO user accounts can access all of the status pages they own and all of the non-SSO status pages that they are a team member of.
SSO user accounts can access all of the status pages that share the same SSO Organization ID.
How to sign out of Status.io when using SSO?
Users can sign out of Status.io by clicking the sign out link.
How to disable access for a SSO team member?
To immediately disable the access of a team member, any administrator can remove the user from the Team page in the Status.io Dashboard by clicking the remove button next to the user. Make sure to disable their access at the Identity Provider first, because if they can sign in with the Identity Provider they would be re-added to the team automatically.
What is the maximum authenticated session time?
The default max session time is 24 hours. This can be changed to any value by contacting Status.io Support.