SSO Settings in InVision V7 – InVision Support

This article provides answers for InVision V7 only. If you're using InVision V6, read this article instead. Not sure which version you're using? Find out now.

After you have configured settings in your identity provider (IdP), you will need to configure SSO settings in InVision V7.

SSO in InVision V7 is only available for Enterprise plans. To set up SSO, you must be an owner or admin on the Enterprise account.

Accessing SSO settings

To access your SSO settings:

Sign in to your InVision Enterprise here: your-team-name.invisionapp.com
In the lower-left corner, click the [Your Team Name] dropdown, and then click Settings.
Click Single sign-on.
Toggle on Require SSO for every member of [your enterprise team].
Complete the form, using the appropriate information from your IdP's metadata file.
Click Update.

Fine-tuning your sign-in experience

Within the SSO settings, there are two options that let you customize the sign-in experience:

Allow users to sign in without SAML
Allow Just-in-Time provisioning

Allow users to sign in without SAML

If this setting is toggled on (), members of your team can choose to sign in via your IdP, or by using their email and password.

Enabling this setting can save time and hassle, as it allows users outside of your company—people who don’t have SSO accounts with your company, such as clients and contractors—to access your InVision team via any link (including document links) to your Enterprise account.

Allow Just-in-Time provisioning

If Just-in-Time provisioning is toggled on (), here's what to expect:

Anyone who you have previously authorized—via your IdP app—can automatically join your InVision Enterprise team when signing in via SSO for the first time.
You'll choose which default role will be assigned to people who join the team via Just-in-Time provisioning:
- Guest: People with the guest role can create documents, but they can only access spaces and/or documents that other people have created if they are explicitly invited.
- Member: People with the team member role can preview and join all open documents and spaces.

If Just-in-Time provisioning is toggled off (), you'll add a custom message to let prospective new members know how to request access and join your team:

invision-cloud-v7-sso-settings-request-access-message.gif

Configuring your IdP for use with InVision

For information on setting up SSO with a specific IdP, check out one of these articles:

Support

Community

Courses

Blog Posts

Resources

Internal Knowledge Base

Try searching for :

In this article

Conversations

In this topic

In this post

You'll learn how to:

Courses in this path

[[ course.title ]]

In this article

[[ article.title ]]

Check out exciting new features! 🚀

SSO Settings in InVision V7 V7

Accessing SSO settings

Fine-tuning your sign-in experience

Allow users to sign in without SAML

Allow Just-in-Time provisioning

Configuring your IdP for use with InVision

Still need help?

Follow the guide

Talk to the community

[[ item.title ]]

Dig deeper

[[ item.title ]]

Courses

Blog Posts

Resources

[[ section.name ]]

[[ article.title ]]

Check out exciting new features! 🚀

Related articles

Accessing SSO settings

Fine-tuning your sign-in experience

Allow users to sign in without SAML

Allow Just-in-Time provisioning

Configuring your IdP for use with InVision

Still need help?

Follow the guide

Talk to the community

[[ item.title ]]

Dig deeper

[[ item.title ]]