Configure Single Sign-On for Lattice

Integrate your existing single sign-on solution right into your Lattice account.

Note: Configuring Single Sign-On (SSO) is a technical process. Work with your IT team to complete setup.

Popular SSO providers

• OneLogin + Lattice
• Okta + Lattice
• Google Workspace + Lattice
• Microsoft Entra + Lattice
• TriNet + Lattice

Integrate Single Sign-On

1. Navigate to Admin > Settings > Platform > Single Sign-On.
2. Lattice can integrate with any SAML 2.0 identity provider. Use the following values to set up the SAML integration:
   • ACS URL: https://router.latticehq.com/sso/[subdomain]/acs
   • Entity ID: https://router.latticehq.com/sso/[subdomain]/metadata
     • Example: If your organization’s Lattice URL is https://bigco.latticehq.com, your subdomain is bigco. Your ACS URL would be:
       • https://router.latticehq.com/sso/bigco/acs
   • If your Lattice data is hosted in the EU data center, use the following values:
     • ACS URL: https://router.emea.latticehq.com/sso/[subdomain]/acs
     • Entity ID: https://router.emea.latticehq.com/sso/[subdomain]/metadata
3. Ensure the Name ID is the user’s email address. Use this Name ID format: urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress
4. Copy your SAML application’s XML metadata and paste it into Single Sign-On.

Note: Open the metadata file in a text editor, such as Notepad or TextEdit. Opening an XML file in another application may reformat it.