Enterprise Account Settings

Last updated 15 June 2019

Enterprise Accounts are in public beta.

The Settings tab of your Enterprise Account lets you rename the Enterprise Account, set up single sign-on (SSO), and access Audit Trail. Enterprise Account users must have the manage permission to access this tab.

Rename Enterprise Account

If you want to change your Enterprise Account name, you can click Edit, type the new name in the “Account name” field, and then save the new name.

AccountRename

View audit logs

Please submit any questions, suggestions, and other feedback you have to heroku-audit-logs@salesforce.com

Heroku Audit Trail (audit logs) enables you to export a chronological, JSON-formatted archive of certain events associated with your Heroku Enterprise account. This archive helps you meet a variety of compliance, auditing, and accountability requirements. Visit the Audit Trails page to learn more.

AuditLogs

Set up SSO (single sign-on)

If this is the first time you’re setting up SSO for your Enterprise Account, and none of your Enterprise Teams already has SSO enabled, click Begin setup.

SSONotSetUp

Provide values for each of the following fields:

  • Identity Provider (IdP) Issuer URL
  • Identity Provider (IdP) Redirect URL
  • Identity Provider (IdP) Certificate

Activate the Enable SSO switch and click Save.

EnableSSO

If you already have SSO enabled for a particular Enterprise Team, the following notice displays on your Enterprise Account’s Settings tab:

EnableSSO

You can click Migrate IdP to Account to move the SSO configuration from the indicated Enterprise Team to the Enterprise Account.

If you migrate an SSO configuration from an Enterprise Team to its parent Enterprise Account, new SSO users are no longer automatically added to the originating Enterprise Team. Instead, they are added to the Enterprise Account with the view permission only. An Enterprise Account administrator can then grant any additional team-specific permissions to the user.

When SSO is configured at Enterprise Account level, new users are added to the Enterprise Account with the view permission. An admin needs to add the user to desired teams and assign appropriate permissions.

Providing multiple IdP certificates

See this article for more information on how multiple IdP certificates are provided for your Enterprise Teams.

Feedback

Log in to submit feedback.