Skip to main content

How do I create an SSO guest user for the Aiwyn Firm Portal?

Cassandra Yost
Updated

You can create a secure SSO user that allows Aiwyn Support to access your Firm Portal for troubleshooting and support purposes.

Understanding Firm Portal Access

Access to your Firm Portal is granted entirely through your firm’s single sign-on (SSO) environment.
Aiwyn does not have direct access to your portal. Instead, your firm must create a generic Aiwyn SSO test user in your SSO directory and securely share the credentials with Aiwyn.

Once configured correctly, this user allows Aiwyn Support to assist your firm and clients when necessary.

Creating The Required SSO Guest User

Create a new user in your firm’s SSO directory specifically for Aiwyn access.

Ensure the user profile includes all required fields:

  • First Name

  • Last Name

  • Email Address

The email address value must match the email used when creating the user account.
All required fields must be populated for both real users and the Aiwyn SSO guest user.

Screenshot 2025-10-10 at 4.27.11 PM.png

Securely Sharing Guest User Credentials

You can share the SSO guest user information with Aiwyn using a secure channel, such as:

  • Your firm’s secure IT Checklist

  • A secure file-sharing service

  • Another secure method approved by your IT team

Credentials must never be shared over emailchatphone, or any unsecured communication method.

Understanding Credential Security

The Aiwyn SSO guest user credentials are stored in a secure, access-limited system.
Only authorized members of Aiwyn Support and Engineering can access this information, and it cannot be shared internally outside of approved personnel.

Configuring Multi-Factor Authentication

Consider enabling multi-factor authentication (MFA) for the SSO guest user.
Aiwyn Support will authenticate using a recognized authentication application, and the assigned support user will be documented in the secure credential record.

Understanding Usage And Access Limitations

The SSO guest user is used only by Aiwyn Support and Engineering for troubleshooting and investigation.
Aiwyn will never perform firm-only actions, including:

  • Issuing client refunds

  • Making client payments

  • Removing processing fees

  • Setting up saved payment methods

  • Creating recurring payments

These actions can only be completed by firm users.

Auditing Ongoing Access

Each time the Firm Portal is accessed by Aiwyn personnel, the session is logged with:

  • Date and time of access

  • Name of the Aiwyn team member

  • Purpose of access

This information is recorded in the secure SSO user access document for auditing and accountability.

Related articles