The below document pertains to customer accounts that manage their user licensing in the Adobe Admin Console.
Accounts that authenticate to Adobe Acrobat Sign directly must configure their IdP to permit this type of Single Sign-On.
When administrators manage their Adobe Acrobat Sign user licenses within the Adobe Admin Console, they have the option to create end-user accounts with different identity requirements, including Federated ID (i.e. SSO / SAML): https://helpx.adobe.com/enterprise/using/identity.html
These Federated ID end users may already have an authenticated session with the organization's identity provider (IdP) before signing in to Acrobat Sign. For example, the user may have already authenticated with the IdP when logging into the organization's intranet page or a Microsoft service. In this case, the administrator may not want to require the end-user to authenticate again when accessing Acrobat Sign. To meet this goal, the administrator may create a URL with a unique URL parameter, so that Acrobat Sign can verify that the Federated ID end user is already authenticated to the organization's IdP, and therefore does not need to authenticate again. The administrator may then wish to publish this URL internally (for example, on an intranet page).
Construct a unique URL consisting of the following:
Therefore, the entire URL will be similar to:
If the end-user meets the prerequisites above, and if the end-user is already authenticated with the company's IdP, then the end-user will be authenticated to Acrobat Sign and brought to the application homepage.
If the end-user is not already authenticated with the company's IdP, the end-user will likely be brought to the company's IdP login page, where they will be required to authenticate before being brought to the Acrobat Sign web application homepage.