Today we’re excited to announce the launch of Single Sign-On (SSO). Available as part of the Twilio Enterprise Plan, SSO mitigates compliance and security risks for organizations by giving businesses control over user authentication and user revocation via corporate mandated tools.
Today, all developers and any user accessing Twilio console maintains his or her own login credentials. While this is totally acceptable for small businesses or prototype accounts, this practice can lead to problems when security and compliance are important. For example, think about what happens to an employee’s Twilio account when they leave your organization. Unless you manually remove that user from all accounts that they were invited to, they’ll continue to have access to the Twilio Console and your application; this is a substantial security risk. The process for rescinding access can be both cumbersome for admins and error prone if you have multiple accounts or if you happen to be sharing account credentials.
Why SSO with Twilio
Most companies address situations like this by relying on Single Single-On providers to manage authentication centrally. By configuring SSO through Twilio, you can use your Identity Provider of choice to authenticate your employees’ access to Twilio. Once configured, your employees can use the same credentials to access Twilio that they currently use for other internal systems. This is both more convenient for your employees and a more secure best practice for your organization.
As long as your IdP supports SAML 2.0, integrating SSO is straightforward. Setup requires exchanging basic information, such as an Entity ID, a service URL, and the appropriate certificates. To view all the details, check out the SSO integration documentation.
To get started with SSO, first you need to be enrolled in the Twilio Enterprise Plan, which now comes with the following capabilities (and more):
- Access Management: Single Sign-On (SSO)
- Audit Events
- Public Key Client Validation
If this sounds like a good fit for your organization, get in touch with Sales.
We can’t wait to see what you build in the Enterprise!