Skip to content
English
Steno
  • There are no suggestions because the search field is empty.

Setting Up SAML Single Sign-On (SSO)

Streamline your firm’s login process and enhance security by enabling SAML Single Sign-On (SSO). This allow your users to log into Steno using your organization’s centralized identity provider (IdP) like Azure AD, Okta, or Google Workspace.

Prerequisites

  • You must have Admin permissions in Steno to access these settings.

  • You will need your identity provider’s Metadata URL or Metadata XML file ready before starting.

Step 1: Navigate to Firm Settings

  1. Log in to your Steno dashboard.

  2. In the top navigation bar, click on Admin and select Firm Settings from the dropdown menu.

  3. Scroll down to the Sign-in Methods section.

Step 2: Initiate SAML Setup

Click the Set up SAML button. This will open a configuration modal.

Firm Settings

SAML Provider

Step 3: Fill In Set Up Fields

1. Enter Provider Name: 

  • Enter a friendly name for your identity provider (e.g., "Azure SSO" or "Okta"). This name may be visible to your users on the sign-in screen.

2.  Choose how you want to provide your IdP’s configuration details:

  • Metadata URL: Select this option if you have a hosted URL for your metadata. Simply paste the link into the field provided.

  • Metadata XML: Select this if you have downloaded a configuration file from your IdP. Click Upload XML File to select the file from your computer.

Step 4: Attribute Mapping

To ensure users are correctly identified, you must map the email attribute from your IdP to Steno.

  • Under Attribute Mapping, locate the email field.

  • Enter the corresponding IdP attribute name used by your provider

Step 5: Security Settings (Optional)

Depending on your firm's security requirements, you can enable additional options:

  • Enable SAML request signing (SHA-256): Check this to verify that requests come from your organization and prevent tampering. 

  • Require encrypted assertions: Check this to require your IdP to encrypt user data sent during login. 

Step 6: Complete Setup

  1. Click the Set up SAML button at the bottom of the modal.

  2. A success message will appear: "Your SAML configuration has been set up. This may take a few minutes to process."

  3. Refresh the page after a few minutes to see the updated status.

What Your Users Will See

Once SAML is enabled:

  • New Sign-In Option: Users will now see a "Log in with [Provider Name]" button on the Steno sign-in page.Single Option

  • Switching Methods: Admins can prompt users to switch their sign-in method from password-based to SSO for better security across the firm.

Troubleshooting

If you encounter errors during setup, ensure that:

  • The Metadata URL/File is current and hasn't expired.

  • The Attribute Mapping for the email exactly matches the claim name sent by your IdP.

Need further assistance? Reach out to our support team at concierge@steno.com.