SSO without email

3 Comments

  • Guy Dee

    Hi Hint!

    It is not possible to use external ID only in an SSO payload. An email address is always required. Sorry I don't have better news!

    If you don't know some users' actual email address, you might consider generating a unique "dummy" email address for each user for the purposes of SSO. If you do this, though, just be sure that the dummy addresses you create are actually dummies! You don't want to accidentally send notifications to an address that turns out to be real. A good practice would be to use an example domain such as "example.com" which Zendesk never tries to send email to since we know it's not real, or to use a domain you control.

    If you learn a user's real email address in the future, you can send the new email address in the payload with the previous external ID, and we'll update the user's profile to use the new email address as the primary address.

    I hope this helps get you pointed in the right direction!

    0
  • Alexander Artamoshin

    Which domain should I use for dummy emails? Can that domain list be configured?

    0
  • Jupete Manitas

    Hi Alexander, 

    Thanks for writing! Based on Guy Dee's response, second option is using your domain that you own. He is suggesting to use your own domain or it means that company name that you are using. Ex. companytest.com so you can create dummy email like customer@companytest.com domain for the purposes of SSO.

    Thanks!

    0

Please sign in to leave a comment.

Powered by Zendesk