Single Sign-On (SSO)

SSO Settings

The Google Single Sign-On (SSO) setting in Temperstack provides administrators with the ability to control and secure user access by restricting which email domains can use Google SSO for logging in. This feature ensures that only users from specific, authorized domains are allowed to access Temperstack through Google SSO, thereby enhancing security and control over user access.

Setting Up Google SSO in Temperstack

To set up Google Single Sign-On (SSO) in Temperstack and apply email domain restrictions, follow these steps:

Navigate to Admin
Within the Admin section, select Manage Organization.

Scroll to Login Email Domain Restriction:
Enter Allowed Email Domains: In the provided field, enter the email domain(s) you want to allow for Google SSO login. Separate multiple domains with commas (e.g., yourcompany.com, partners.com).
Enable Domain Restriction: Check the option Only Allow SSO Login to enforce that only users from the specified email domains can log in using Google SSO.

Existing Users: Users from other email domains who are already part of Temperstack will not face any new restrictions. They can continue to log in using their existing methods.
Default Setting: If no email domains are entered, Google SSO will be open to all email domains by default.

Inviting a new user

Navigate to Admin -> Manage Organization -> User Management.
To invite users, fill in the mandatory details, including:
- Name
- Email ID
- Role
- Country code
Once the user accepts the invite, they will appear in the list below.
In the user list, you can:
- Change the user’s role
- Delete the user

Creating a new team, adding users & mapping services to teams

Navigate to Admin -> Manage Organization -> Team Management.
Create a team by entering a name and clicking the creation button.
Once created, you can:
- Add team members.
- Map services to the team.
- Delete the team if it is no longer needed, which helps in organizing and monitoring your organization effectively.
After creating a team, you can edit it at any time to:
- Add more members.
- Map additional services as needed.

Allow list of services for AWS (Organization scan)

To perform an organizational scan in TemperStack:

Navigate to Admin and select Manage Organization.
Within Manage Organization, locate and select Organization Scan.
In TemperStack, we provide a wide range of integrations with various AWS services such as EC2, SQS, RDS, ElastiCache, Lambda, and more.
When conducting an organizational scan, you can customize the scan according to your requirements by enabling or disabling specific integrations.
For example, if you wish to scan only AWS SQS resources, access "Manage Organization" in "Admin" and disable all other services except SQS.
This approach ensures that the scan focuses solely on fetching and displaying information pertaining to SQS resources.

Manage your Profile

Navigate to Admin -> Profile.
Click on the "Edit" icon next to your name to modify it, then click "Update" to save the changes.
Update your phone number by entering the new number in the designated field, then click "Update" to save.
To change your password, click on the "Change Password" option, enter your current password followed by the new password, then click "Update Password" to confirm the change.

Enabling Two-Factor Authentication

For enhanced security, you can enable Two-Factor Authentication (2FA) by using the toggle button provided below. This feature adds an extra layer of protection to your account.

Accepting invite as a new user

After inviting a new user, an invitation email is sent to the user's provided official email address.
The user receives the invitation email and accepts it.
Upon acceptance, the user is successfully added to the team.

Only Admins can send invites to new users.

Last updated 1 month ago