Before you start
Things you need to know:
You must be logged into a top-level (parent) account to manage SSO access.
You must be the account owner, or a user with the Can manage account permission enabled.
Learn more in Restrict and grant user access permissions.If you enable SSO login for a managed user, you must ensure that they exist within your identity provider (IdP), otherwise they will be unable to access the account(s).
Enable or disable SSO for a user
Managing SSO access on a user level can be useful when granting access to users outside of your immediate organisation, for example, marketing consultants or your development agency.
When you edit a managed user, you can individually manage their SSO access to each account within your team structure. This means that for one of your accounts you can require the user to log in through SSO, without having this requirement for all of your accounts.
Account-level SSO configuration
If one or more of your accounts doesn't have SSO set up on the account level, you won’t be able to grant SSO access to your users. The option displays N/A instead of a toggle switch.
To manage SSO access for a user:
Expand the User menu and go to Settings > Users and teams > Users.
Select the user you want to manage login settings for.
Under Settings, on the Accounts tab, select YES or NO to enable or disable SSO login for the user on the relevant account.
Select SAVE.
For any accounts where Log in with SSO is set to YES, the user now needs to access through SSO, using the appropriate credentials when prompted. For any accounts set to NO, the user needs to log in with their Dotdigital username and password.
Learn more in Log in using SSO.