How does single sign-on work?
Once the connection between your central identity provider (e.g., Active Directory) and our SSO solution is set up, your team members will be able to use it. To do so, they will need to follow the steps below:
- Click the Log in with SSO or Continue with SSO button displayed in the DeepL login window
- Enter the company SSO domain
- Click Log in
Next, the user will be redirected to their identity provider, where they should enter their credentials. Once the login is successful, the user will be redirected to DeepL.com and will be automatically logged in.
For each new user, there will be a new DeepL account created. Once you reach the limit of team members in your plan, no other new team members will be able to use DeepL via your paid plan.
This means that any user who is successfully logged in to your identity provider can create a DeepL account until the maximum limit of team members for your team is reached.
If you reach the maximum limit of team members in your team and a new user attempts to join your team, the system looks for SSO team members who have not logged in to their accounts for 30 days or more. If the system finds such users, the accounts of users with the the longest time since their last session will be deactivated so that the new user can join your team.
If no new users are attempting to join your team, the disabling mechanism for inactive team members (those who have not logged in to DeepL for 30 days) isn't triggered.
Login via SSO is currently available for the following platforms: web translator, desktop apps, mobile apps, browser extensions, DeepL for Microsoft Word and DeepL for Microsoft Outlook.
For team admins
You can find more information about how to manage your team members with SSO here.
Note: Team admins cannot log in with SSO. To configure or adjust SSO settings at any time, admins should continue to log in with their login credentials.