Myagi

If your organization uses an identity provider (IdP) like Okta, Azure AD, or any SAML 2.0-compliant system, you can enable Single Sign-On (SSO) for seamless access to Myagi. This integration is available free of charge.

Single Sign-On (SSO) allows your users to access Myagi using their existing internal credentials - no need to create separate login details. With SSO, your staff can access supplier training on Myagi directly from internal platforms like:

Human Resource Information Systems (HRIS)

- Learning Management Systems (LMS)
- Human Resource Information Systems (HRIS)
- Custom intranet portals

1-click login from your internal systems to Myagi

Automated user management - new hires are granted access immediately

Instant deactivation - access is removed for terminated employees

Reporting - easily track engagement with supplier training

- 1-click login from your internal systems to Myagi
- Automated user management - new hires are granted access immediately
- Instant deactivation - access is removed for terminated employees
- Reporting - easily track engagement with supplier training

To connect your identity provider (IdP) to Myagi, we’ll ask for a few key details from your IT team (SAML Metadata):

Single sign on service URL - The single sign on endpoint of the IdP. This is where we will send the authentication request.

1. Single sign on service URL - The single sign on endpoint of the IdP. This is where we will send the authentication request.

Single logout service URL (optional) - This is where we will send the logout request if the IdP wants to implement single log out as well.

IdP x509 certificate - The public x509 certificate of the IdP. We will use this to verify requests. Your certificate should be PEM encoded. Use this tool to verify that the certificate is properly encoded.

Username field - The name of the field you will send us that will act as a unique user identifier. It could be, for example, a link to one of the Microsoft claims in case IdP is Active Directory:

bashCopyEdithttp://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress

Email field - The name of the email field you will send us.

First name field - The name of the first name field you will send us.

Last name field - The name of the last name field you will send us.

Team ID field (optional) - The name of the field you send to us which will map a user to a Myagi team.

Group ID field (optional) - The name of the field you send to us which will map a user to a Myagi group. If you send multiple values with this field name, we will add the user to multiple groups.

Permission Group field (optional) - The name of the field used to map users to either the Team Manager or Company Admin permission group.

- Value of this field needs to be <code>"team_managers"</code>, <code>"company_admins"</code> or empty.

1. Single logout service URL (optional) - This is where we will send the logout request if the IdP wants to implement single log out as well.
2. IdP x509 certificate - The public x509 certificate of the IdP. We will use this to verify requests. Your certificate should be PEM encoded. Use this tool to verify that the certificate is properly encoded.
3. Username field - The name of the field you will send us that will act as a unique user identifier. It could be, for example, a link to one of the Microsoft claims in case IdP is Active Directory:
 bashCopyEdithttp://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress
4. Email field - The name of the email field you will send us.
5. First name field - The name of the first name field you will send us.
6. Last name field - The name of the last name field you will send us.
7. Team ID field (optional) - The name of the field you send to us which will map a user to a Myagi team.
8. Group ID field (optional) - The name of the field you send to us which will map a user to a Myagi group. If you send multiple values with this field name, we will add the user to multiple groups.
9. Permission Group field (optional) - The name of the field used to map users to either the Team Manager or Company Admin permission group.
 - Value of this field needs to be <code>"team_managers"</code>, <code>"company_admins"</code> or empty.

We’ll provide configuration values specific to your account, including:

- Audience
- Recipient
- ACS URL
- Logout URL

These will be based on your Myagi company subdomain.

To complete the setup and run end-to-end tests, we’ll also ask you to provide a test user account (email and password) that we can use to validate the integration from your side. This ensures everything works correctly before enabling SSO

If you’re ready to enable SSO or want to learn more, please reach out to us at <a href="" rel="nofollow noopener noreferrer" target="_blank">myagisupport@rallyware.com</a>. Our team will guide you through the setup process and help ensure a smooth integration.

Connecting Myagi to Your Internal Training Platform with Single Sign-On (SSO)

Myagi Blog

Find answers and get help from Intercom Support and Community Experts

This site employs cookies and other technologies that we and our third party vendors use to monitor and record personal information about you and your interactions with the site (including content viewed, cursor movements, screen recordings, and chat contents) for the purposes described in our Cookie Policy. By continuing to visit our site, you agree to our {websiteTermsLink}, {privacyPolicyLink} and {cookiePolicyLink}.

This site uses cookies and similar technologies ("cookies") as strictly necessary for site operation. We and our partners also would like to set additional cookies to enable site performance analytics, functionality, advertising and social media features. See our {cookiePolicyLink} for details. You can change your cookie preferences in our Cookie Settings.

We use cookies to make our site work and also for analytics and advertising purposes. You can enable or disable optional cookies as desired. See our {cookiePolicyLink} for more details.

Advertising cookies are set by our advertising partners to collect information about your use of the site, our communications, and other online services over time and with different browsers and devices. They use this information to show you ads online that they think will interest you and measure the ads' performance. Social media cookies are set by social media platforms to enable you to share content on those platforms, and are capable of tracking information about your activity across other online services for use as described in their privacy policies.

These cookies enable the website to provide enhanced functionality and personalisation. They may be set by us or by third party providers whose services we have added to our pages. If you do not allow these cookies then some or all of these services may not function properly.

These cookies are necessary for the website to function and cannot be switched off in our systems.

These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site.

You have the right to opt out of the sale of your personal information. See our {cookiePolicyLink} for more details about how we use your data.

Your Privacy Choices

We use cookies to enhance your experience. You can customize your cookie preferences below. See our {cookiePolicyLink} for more details.

Cookie Settings

Link, Press control-option-right-arrow to exit

Empty Help Center

Uh oh. That page doesn’t exist.

Disappointed

Neutral

Smiley

Thinking...

Searching through sources...

Analyzing...

Tickets submitted through the messenger or by a support agent in your conversation will appear here.

Connecting Myagi to Your Internal Training Platform with Single Sign-On (SSO)

What is SSO?

Benefits of SSO

What You’ll Need to Get Started

Provide a Test User

How to Get Started