Setup Custom SSO

Duo SSO

Learn how to set up Duo SSO (OIDC) for secure authentication.

cside allows you to create an Duo OIDC application and use it to authenticate users into your cside organization.

When you enable Duo SSO, anyone with your company email domain will be forwarded to authenticate with Duo. This means you can use Duo to scope who can access cside, and when you allow someone, they will automatically be added to your cside organization with no permissions.

Requirements:

  • cside Enterprise plan
  • Organization Admin role in cside
  • An already setup cside organization - the initial admin (you) will be the first user, and will be converted to SSO upon migration.
  • Admin access to your Duo account

To access the SSO settings in cside:

  1. Click on your account at the bottom left corner of the dashboard
  2. Select View organization

View organization

  1. Select Settings

Organization settings

  1. Navigate to the SSO tab

Create a Duo OIDC Application

  1. Go to your Duo Admin console. Head into the Applications > Applications tab.
  2. Click on the "Add application" button.
  3. Search for "Generic OIDC Relying Party"
  4. Click "Add"

Create OIDC Application

Configure Duo OIDC Application

Now we will configure this application to be compatible with cside.

  1. Enter the name of the application as "cside"
  2. Under "User Access", select either "Enable for all users" or "Enable only for permitted groups". If you select the latter, ensure that you add the appropriate groups that should have access to cside.
  3. Scroll past "Metdata" to "Relying Party"
  4. Under "Sign-In Redirect URLs" enter https://dash.cside.com/auth/callback/oidc
  5. Under "OIDC Response", select the following scopes:
    • openid
    • profile
    • email
  6. Scroll to the bottom and click "Save"

Obtain Required Details

You'll need the following information from your Duo application to configure SSO in cside:

  1. Client ID: Found in the application metadata (e.g., DKSYWLEY3UDCDGQFXQ0X)
  2. Client Secret: Found in the application metadata
  3. Duo Endpoint: Your Duo SSO domain (e.g., sso-abc12345.sso.duosecurity.com)

Relevant Details

Configure SSO in cside

  1. Go to the cside dashboard.
  2. Navigate to the SSO settings as described in Navigating to SSO Settings.
  3. Click Select Provider (or Change Provider if you already have SSO configured) and select Duo Security.
  4. Fill in the required fields:
    • Email Domain: Your company's email domain (e.g., example.com) - this must match the users in your Duo instance
    • Duo Endpoint: Your Duo SSO domain (without https://)
    • Client ID: The Client ID from your Duo application
    • Client Secret: The Client Secret from your Duo application
  5. Click Test Connection to verify the configuration.
  6. Once verified, click Save SSO Configuration.

Duo Security SSO Configuration in cside

Testing Your Configuration

After saving the SSO configuration, you can test it by:

  1. Opening a new incognito/private browser window
  2. Navigating to dash.cside.com
  3. Entering an email address with your configured domain
  4. You should be redirected to Duo for authentication

Need Help?

If you encounter any issues during setup, contact your cside representative for assistance.

How is this doc?

Okta SSO

Previous Page

Microsoft Entra ID SSO

Learn how to set up Microsoft Entra ID SSO (OIDC) for secure authentication.

On this page

Navigating to SSO SettingsCreate a Duo OIDC ApplicationConfigure Duo OIDC ApplicationObtain Required DetailsConfigure SSO in csideTesting Your Configuration