As an Organization Admin you may see a prompt to create a new organization instead of joining an existing one during SSO setup. In this instance, you may need to change your Identity Provider to properly connect to your organization account.
Please follow the steps below to ensure your sign-in completes using SSO:
- Sign in to the Admin Console with your original OIDC method (Apple, Google or Microsoft) and ensure auto-capture is enabled for your Domain.
- Sign out
- Sign in to the App via web (https://web.goodnotes.com) using SAML SSO.
- Click the "gear" icon in the top-right to open the settings menu, then click "Manage Account", then "Delete Account".
-
Follow the steps to delete the account, including "Want to permanently delete your account immediately?" at the bottom of the screen and confirming.
- Go back to the Admin Console (https://org-admin.goodnotes.com). Sign in with SAML SSO. This time the account should automatically join the organization. You should see the "No access" screen because your new SAML SSO user has the "Member" role.
- To promote your new SAML SSO user to "Organization Admin", sign out of the Admin Console, then sign in again using your original sign in method (Google/Apple/Microsoft). Go to "User Management" and find the row for your new SAML SSO account. Change the role to "Organization Admin".
- Finally, sign out of the Admin Console once more and sign in using SAML SSO.
You should now have access to the Admin Console using SAML SSO. You can delete the original account created by the initial sign-in (Google/Apple/Microsoft) from the Admin Console if you wish.
Please make sure to complete the "permanently delete your account" step at the end of the deletion process, as this step is easily missed.