SSO setup for Roam admins

Single Sign-On (SSO) allows users to sign in to Roam using their existing company credentials. Roam supports SAML 2.0 and is compatible with most identity management platforms, including (but not limited to) Google, Okta, Rippling, and Microsoft Entra ID (formerly Microsoft Azure Active Directory).

Organization Setup in Roam

To enable SSO, your organization must first have a verified domain in Roam. You can set this up in Settings > Roam Administration > Technical Setup.

If you have already linked your Google Workspace or Microsoft 365 calendar, your domain should be automatically verified. If you need assistance with domain verification, please contact us.

Once your domain is verified, go to the Single Sign-On (SSO) section, click New SSO Configuration, and enter the Name and Identity Provider fields.

Identity Provider Information

SSO URL: The endpoint URL that you received from your Identity provider.
Entity ID: The URL containing the Identity Provider’s name.
Identity Provider Certificate: The public key used to sign authentication assertions, provided by your Identity Provider.

Service Provider Information

Provide the following information to your Identity Provider:

ACS URL: The URL where your Identity Provider should send its SAML response after authentication.
Entity ID: A unique identifier that is used to identify a specific entity in the SAML Authentication.

Once you’ve completed the form and shared the Service Provider information with your Identity Provider, click Add to finalize the setup.