Single Sign On for the Admin Console

Imprivata enables Single Sign On access to your Patient Access Admin Console, and other Imprivata Admin Consoles, all from access.imprivata.com, powered by the Imprivata Cloud Platform.

Set Up the Connection to the Imprivata Cloud Platform

Configure the secure connection between your identity provider (IdP) and the Imprivata Cloud Platform.

Setup Wizard

Contact Imprivata Services. Imprivata Services will create a Cloud Tenant for your enterprise, and send a Welcome email with a link to the Cloud Tenant Setup wizard. Click the link in the email and follow the wizard to complete the secure connection.

NOTE:

Open your identity provider (IdP) console at the same time as the Cloud Tenant Setup wizard because they need metadata from each other.

Before You Begin

  • Optional — You need a PNG, JPG, or GIF of your organization logo (200 x 100 pixels or smaller, max 100KB).

Wizarding Steps

The setup wizard leads you through the following steps:

  1. Agree to the Data Processing Addendum.

  2. In the Cloud Tenant Setup Wizard, on the Connect to Enterprise Access Management page, click Skip to skip connecting to Imprivata Enterprise Access Management.

  3. Click Copy under Copy the Imprivata SP metadata URL. Paste the URL in a new browser tab, and save the page as an XML file. You will use this Imprivata SP metadata XML in a later step.

    IMPORTANT: To configure the integration with Entra ID as the IdP, continue here: Configure Entra ID as The Identity Provider.
  4. To enable SSO to the Imprivata Control Center using your SAML IdP (e.g., Entra ID, Okta, Ping ID): Before you leave this page, select Administrator console single sign-on using SAML.

  5. Provide the Imprivata SP metadata URL to your IdP.

    NOTE:
    • Sign On URLhttps://access.imprivata.com

    • Recommended — Configure email address as the NameID format for user identity.

    • Recommended — Configure Group ID (rather than group name) as the source attribute for group claims.

  6. Enter your IdP's SAML metadata in the wizard.

  7. Configure the groups that identify users with administrative access.

  8. Add your organization's business email address, user-facing name, and logo.