Table of Contents

Available with Enterprise

Please first log in to SeaTable Cloud and then navigate to the Team Management section. From there, go to Teams > Settings > Single Sign-On.
The information displayed here will be required for your Identity Provider (IdP).

In the displayed URLs, your team ID will be shown instead of xxxx.

Information in the SeaTable Cloud Team Management

  • Create a new application in your IdP for SeaTable Cloud.
  • Use the URLs provided by SeaTable for:
    • Entity ID
    • Assertion Consumer Service (ACS) URL
    • Login (SSO URL)
    • Logout
  • Make sure the metadata URL of your IdP is directly accessible and does not redirect to other domains.
  • Configure transmission of the following required attributes:
    • contact_email: user’s email address
    • name: user’s full name
    • uid: unique and persistent user identifier
  • Download the valid SAML certificate from your IdP.
  • Upload the certificate and metadata URL to the SeaTable Team Management.
  • Select the domain you want to associate with SeaTable Cloud.

You will now see a DNS record in Team Management that you must add for the domain you just specified.

TXT DNS record for domain ownership verification

  • Add the TXT record provided by SeaTable to your registered email domain’s DNS settings.
  • Wait a few minutes; DNS updates can sometimes take several hours.
  • Start the domain ownership verification.
  • Once verification succeeds, your domain will be linked to your SeaTable Cloud team.

Test login with a user from the verified domain. If a user account with that email already exists in your team, accounts will be merged.
Currently, team members can log in using either SSO or their previous username and password.

If login via SSO works reliably, activate the option in Team Management to allow login only via SSO. This will disable previous username/password logins.