Skip to content

Single Sign-On (SSO)

Single Sign-On (SSO) lets your team log in to the Slide Console using your existing identity provider instead of managing separate credentials. Once configured, users authenticate through your IdP and gain access without an additional login.

Slide supports SSO via OIDC (OpenID Connect). The sections below walk you through configuring an identity provider (Microsoft Entra ID) and enabling SSO for your account.

Configuring an Identity Provider (Microsoft Entra ID OIDC)

Create App Registration

App registrations navigation

Azure Entra Register Application Form

Go to https://entra.microsoft.com and navigate to: Identity > Applications > App registrations > New registration

Set:

  • Name: Your app name
  • Account type: Single tenant (Recommended)
  • Redirect URI: Platform: Web URL:https://auth.slide.tech/realms/slide/broker/<id>/endpoint

Note

The Redirect URI can be found in the slide console accounts settings page when enabling SSO.

Click Register.

Copy Required Values

Application overview IDs

Azure Entra Sample Application

From Overview, copy:

  • Client ID: <Application (client) ID>

Configure Authentication

Authentication settings

Azure Entra Application Authentication Configuration

Navigate to Authentication > Add platform > Web and:

  • Add the same Redirect URI from step 1
  • Enable ID tokens
  • Enable Access tokens (optional)

Click Save.

Note

This redirect URI may already be configured if it was set during app registration.

Create Client Secret

Client secret creation

Azure Entra New Client Secret Screen

Navigate to Certificates & secrets > New client secret and copy the value immediately — it won't be shown again.

Use These OIDC Settings

Authority: https://login.microsoftonline.com/{tenant-id}

Authorize URL: https://login.microsoftonline.com/{tenant-id}/oauth2/v2.0/authorize

Token URL: https://login.microsoftonline.com/{tenant-id}/oauth2/v2.0/token

Use These Token Configuration Settings

Navigate to Token Configuration > + Add Optional Claim > ID

  • Token Configuration: Add an optional claim (token type:ID) for upn and email
  • Check the box to add to the Microsoft Graph API

Configuring SSO in Slide Console

Enable SSO

Navigate to Account Settings > Security > SSO and toggle SSO on.

Enable SSO

SSO currently disabled

Once enabled, click SET UP.

SSO Setup Button

SSO enabled

Configure OIDC Settings

In the setup modal, enter the required values from your identity provider:

SSO Setup Form

SSO Setup Modal

Required Fields

  • Redirect URL — copy this value and configure it in your IdP
  • Client ID — from your IdP (e.g., Microsoft Entra App Registration)
  • Client Secret — from your IdP
  • Discovery URL — your IdP's OpenID configuration endpoint, sometimes referred to as the OpenID Connect metadata document. Example (Microsoft Entra): 
    https://login.microsoftonline.com/<tenant-id>/v2.0/.well-known/openid-configuration

Add Your Domain

Under Add Domain, enter your company domain (e.g., slide.tech). You can add multiple domains by clicking ADD DOMAIN.

Once all desired domains are added, click SAVE.

Completed Setup

Completed SSO configuration form

Verify Domain Ownership

After saving, go to Manage Domains.

Manage Domains

Manage Domains modal
  1. Copy the Verification Token
  2. Add a DNS TXT record to your domain:
Field Value
Host @
Type TXT
Value <verification-token>
  1. Wait for DNS propagation (this may take several minutes)
  2. Refresh until the status shows verified

Confirm Configuration

Once configured, your SSO settings will display the Client ID, Discovery URL, and verified domain.

SSO Configured

SSO configuration completed

Note

The Redirect URL must match exactly what's configured in your IdP. Domain verification is required before SSO becomes active.

Configuring Existing Users for SSO in Slide Console

With SSO configured, you'll need to update each user's account before they can log in with SSO.

Select a User

From the Users page, click the user you want to update.

User Selected

User selected

Enable SSO for the User

Select the Settings tab. Under Role, you'll see a new section with an Enable SSO toggle.

User Settings

User settings with SSO toggle

Switch Enable SSO on, then click Save.

User List

User list with SSO enabled user

Note

The user's email domain must match a verified domain in your SSO configuration. Plus addressing or subaddressing is not supported

Note

Plus addressing or subaddressing is not supported

Note

At least one user account must remain off of SSO. this is your break glass account that can be used if your IDP ever stops working. Ensure you document this account.

Creating New Users for SSO in Slide Console

Select Create Account User

From the Users page, click Create User in the top-right corner, then select Create Account User.

Create Account User

Create Account User button

Fill Out User Details

Complete the form with the new user's information. The Enable SSO toggle is on by default. Click Save.

Create Account User Form

Create Account User Modal

Note

The user's email domain must match a verified domain in your SSO configuration.

Disabling SSO

For Individual Users

When you disable SSO for a user, Slide generates a temporary password and emails it to them.

User Settings

User settings pane with SSO toggle

Organization-Wide

When you disable SSO at the account level, users with SSO enabled won't be able to log in until they reset their password.

SSO Configuration

SSO settings

Troubleshooting

SSO has stopped working for all users

Make sure your expiration date on the app registration has not passed, this can be changed in Entra. This may be a great time to use your break glass account to log back into Slide.

I cannot migrate an account to SSO

Make sure that at least one other user account is not on SSO. SSO cannot be enabled for all accounts as one must remain as a break glass account