If you encounter a problem when configuring or using the single sign-on feature, the answers to the questions below may help.
If the issue you have is not addressed below, please contact us.
Contents
- What are the system requirements for SSO?
- Where can I use Dashlane SSO?
- Why is SSO not available to me?
- What identity providers does Dashlane SSO support?
- How do I set up SSO?
- What happens if I forget or want to change my SSO password?
- I am an admin on my Dashlane Business plan—why can't I use SSO for my account?
- How do I add other admins to my Dashlane Business plan after enabling SSO?
- How do I access my password vault offline after enabling SSO?
- Can users add an Emergency contact with SSO enabled?
- How do I offboard a user with SSO enabled?
- How do I offboard an admin with SSO enabled?
- What happens if I am removed from a Business plan that has SSO enabled?
OVERVIEW
What is single sign-on (SSO)?
Single sign-on is an authentication scheme that allows users to log in to multiple software systems with a single ID and password. When integrated with Dashlane, SSO allows your users to sign in to their Dashlane vault using their SSO credentials instead of a Master Password.
How does SSO work?
With SSO, users can sign into their Dashlane vault using their SSO credentials instead of a Master Password. When a user attempts to sign in using SSO, the user is redirected to the Dashlane SSO Connector, which federates to the identity provider. After the user successfully signs in, the SSO Connector sends a unique key to the client that will finally decrypt the user's data.
Is SSO secure?
Yes! Dashlane SSO was built with our patented zero-knowledge architecture in mind, meaning that an account can only be unlocked with your authenticated SSO credentials. For a detailed technical look at SSO, take a look at our security white paper to learn more about how we made sure Dashlane stays secure, even using SSO.
Please note that if your organization has enabled SSO for Dashlane, your IT administrator may be able to access the information you store in Dashlane, including personal credentials. Dashlane has no control over other organization’s policies.
REQUIREMENTS AND AVAILABILITY
What are the system requirements for SSO?
Below are the system requirements needed to deploy the Dashlane SSO:
- A Dashlane Business plan (Dashlane Team does not support SSO)
- Active Directory Federation Services (ADFS)
- Linux virtual machine with the following: Docker installed, SSL Certificate added, and HTTPS published to the internet
Where can I use Dashlane SSO?
SSO users can use Dashlane on the web, Standalone extension, and mobile apps. The desktop app and the Dashlane extension for Safari are currently not supported.
Why is SSO not available to me?
Dashlane SSO is currently only available to users on a Dashlane Business plan. Users on a Dashlane Team plan, Dashlane Premium or Dashlane Free subscription do not have access to the SSO feature.
What identity providers does Dashlane SSO support?
Currently, the only identity provider supported by Dashlane SSO is ADFS. Support for more identity providers is coming soon!
MANAGEMENT
How do I set up SSO?
For a complete guide on how to set up the Dashlane SSO, please see this article.
What happens if I forget or want to change my SSO password?
Due to our zero-knowledge architecture, we never store or share anyone's Master Password or SSO password. If you forget or want to change your SSO password, please reach out to your local network administrator or IT team for further assistance.
I am an admin on my Dashlane Business plan—why can't I use SSO for my account?
In order to access the Admin Console and set up SSO, Business plan admins are currently required to go on using a Master Password for their Dashlane accounts. We hope to bring the SSO experience to admin accounts soon!
How do I add other admins to my Dashlane Business plan after enabling SSO?
After enabling SSO on your Business plan, no users can be promoted to admin status. Please assign all admin roles on your Business plan before enabling SSO.
How do I access my password vault offline after enabling SSO?
Because the Dashlane SSO connector needs to communicate with your IdP to verify your credentials, you must be connected to the internet in order to log into your Dashlane account with SSO. However, SSO users with Biometric unlock enabled on their mobile devices can access their vault using biometric authentication.
Can users add an Emergency contact with SSO enabled?
No. When SSO is enabled for a Business plan, the Emergency feature is disabled for all users.
How do I offboard a user with SSO enabled?
For a guide on how to offboard an SSO-enabled user from your Dashlane Business plan, please see this article. Please note that offboarded users will no longer have access to their Dashlane vault.
How do I offboard an admin of my Dashlane Business plan with SSO enabled?
Currently, SSO-enabled admins cannot be removed from a Business plan. We hope to introduce this functionality soon.
What happens if I am removed from a Business plan with SSO enabled?
Because your Dashlane account was created using your company's SSO credentials, if you are removed from a Business plan with SSO enabled, you will lose access to your Dashlane account and to the information that you stored in Dashlane.
You could export a secure backup of your the data saved in your personal space (currently available only from an Android device) that you can restore to a new Dashlane account. For a guide on how to safely leave a Business plan, please see this article.