Displai Academy
How can we help? πŸ‘‹
All Categories
Digital Signage
Automatic User Provisioning with SAML Custom Attributes

Automatic User Provisioning with SAML Custom Attributes

This enterprise feature enables automatic user provisioning for location and screen access and user roles through SSO setup

Last updated on September 29, 2025

Overview

This enterprise feature enables automatic user provisioning for location and screen access and user roles through SSO setup. Instead of manually assigning locations and roles to each user, you can now configure your company's SAML identity provider - as you would with other software your team uses - to handle this automatically.

How It Works

When users sign in through SSO, Displai automatically syncs the locations and roles based on custom attributes defined in your SAML configuration. This eliminates manual user management and ensures users always have the correct access permissions.

Benefits

  • Streamlined onboarding: New users get proper access immediately upon first login
  • Automatic updates: Role and location changes thanks to your identity provider syncing automatically
  • Reduced admin overhead: No need to manually manage user permissions in Displai
  • Consistent access control: Users maintain appropriate permissions based on your organization's directory

Requirements

  • Enterprise subscription
  • Active SSO/SAML integration
  • Feature must be enabled by customer support

Implementation Steps

1. Enable the Feature

Contact our customer support team to activate automatic user provisioning for your organization.

2. Configure SAML Custom Attributes

In your SAML identity provider, map the following custom attributes:

locations - Array of location identifiers the user should access:

locations => ["store1", "store2", "store3"]

role - User's role within Displai (must use exact values):

  • superadmin - Full system access and management
  • admin - Location and user management capabilities. Cannot delete others' resources without granted permissions.
  • restricted - View, edit, and delete own resources. May view, edit, and delete shared resources based on owner permissions.

role => admin

Example configuration:

Notion image

3. Test the Integration

After configuration, users will automatically receive their assigned locations and roles upon their next login.

Need Help?

Contact our support team to enable this feature and assist with SAML configuration.

Did this answer your question?
😞
😐
🀩