[NEW!] Single Sign-On (SSO) Activation

Modified on: Thu, 3 Apr, 2025 at 9:55 AM

Applies to:          Stayntouch PMS          


Single Sign-On (SSO) Activation


To activate Single Sign-On (SSO) for a property, a Stayntouch Admin user will need to navigate to Configuration > Enable or disable features > Single Sign-On and enable it for the property.



Once SSO is activated for a property, the Stayntouch Support & Implementations team will need to link the hotel to an organization. The Stayntouch team will need to create a JIRA task (CICO-119478) with the hotel name and hotel code requesting a link to an organization.

Once completed by Stayntouch, the customer needs to confirm SSO is set up by navigating to Settings > Hotel & Staff and confirming the Single Sign-On tile is available.



Each property can use their own SSO provider (i.e., Azure, Okta, etc.). From here, the property can set up their SSO accordingly. Please note, entries at the top of the SSO configuration screen will need to be copied and entered into the Identity Provider's site (e.g., Azure, Okta).


Copy the following fields from Stayntouch PMS to Okta:

  • Settings > Hotel & Staff > Single Sign-On > ASSERTION CONSUMER SERVICE > Single Sign-On URL
  • Settings > Hotel & Staff > Single Sign-On > METADATA (ENTITY ID) > Audience URI (SP Entity ID)/Audience Restriction




Copy Metadata from Okta to Stayntouch PMS:

  • Go to Okta Login > Applications > Applications > Stayntouch PMS > Sign On > SAML Signing Certificates > SHA-2 > View IdP Metadata > r-Click > Copy link and paste to Stayntouch PMS Staff login > Settings > Hotel & Staff > Single Sign-On > Metadata Configuration > Metadata URL
  • Once the app has been properly configured, go to Okta > Applications > Assignments, and assign the user you just created to the app.



Moreover, the METADATA (ENTITY ID) field needs to be filled in with the URL of the Identity Provider's metadata. This is the only box that needs any values put into it on the Stayntouch end. All other fields can be ignored. If METADATA (ENTITY ID) field is filled in, and the user clicks SAVE CHANGES, Stayntouch PMS validates the settings before saving, so if the save is successful, it should be set up correctly from the Stayntouch end.





Once set up on the property end, navigate to Settings > Hotel & Staff > User Setup and select the user(s) you want to have SSO activated for. From the Edit User screen, turn ON the ORGANIZATION MANAGED toggle to activate SSO for that user.



Did you find it helpful? Yes No

Send feedback
Sorry we couldn't be helpful. Help us improve this article with your feedback.