Add SSO User Exceptions
When SSO is enforced, you can allow certain users to log in through other means. These users are also known as emergency access accounts or break-glass accounts. ou'll designate users to always log in without SSO when it’s enabled and enforced for the whole account. Generally, this is in case your service provider is down or otherwise unavailable. Read best practices for additional ways to secure these accounts. To learn more about the accounts and why you need them, see emergency access accounts.
To add a user for emergency access.
- Go to Manage SSO enforcement > IDP Configuration > click SSO Enforcement.
- Add users to SSO User Exceptions. You can search for users by name or email.
- Click Save Changes.
This list only applies when SSO is both enabled and enforced for the account.
Next step:
If you are completing your initial SSO setup, you should nowEnforce single sign-on
