Documentation

How do I invite my team to Ternary?

Suggest Edits

Ternary works best when you invite your whole team to collaborate and take actions on shared reports, optimization recommendations, and other sources of data that Ternary provides. In this article, we'll talk about the various ways you can invite a user to Ternary.

Admin Page

Onboarding new users can be manually inviting one or more users to your Ternary tenant via the Admin page https://my.ternary.app/admin and selecting Users

To add a new user or multiple users, click 'Add New User', then enter a single email address or paste a comma-delimited list of email addresses. In the dialog for adding a new users, you'll be asked to provide permissions for that user. A good start is the default of Regular User which is like a Viewer role in Google Cloud Platform. For administrators, consider the Owner role which will give full edit access to the entire tenant.

Once you've completed all the fields, click Submit and your user(s) will be added. Newly added users will receive an email invite to join Ternary. All users in Ternary are keyed off of the email address they provide on the Ternary welcome form. The welcome message and initial logon form will look similar to the following and your newly added users should select 'Continue with Google'


Email Domain

Ternary has a feature which will allow you to assign default permissions to your tenant to anyone who joins from an approved email domain. To request this feature, please file a support ticket [email protected] indicating which domain you would like to use.

SSO/SAML

Ternary integrates with Auth0 for SSO/SAML support. Through Auth0, we support the following identity providers:

  • Okta / OneLogin
  • Google Workspace
  • Microsoft Azure Active Directory
  • Microsoft ADFS
  • Active Directory / LDAP
  • Ping Federate
  • Generic SAML
  • Generic OpenID Connect

You can enable the automatic creation of Ternary accounts for anyone who authenticates from your configured SSO/SAML provider.

To request signing in with an identity provider, please file a support ticket [email protected] indicating you wish to enable SSO/SAML with one of the choices above, and we will work with you to set it up.

Google Groups

A feature is being considered which will allow you to use Google Groups to add entire groups of people rather than just individuals. However, you will have to grant significant permissions on your G Suite instance to the service account that you set up in Onboarding.

Please read the instructions in G Suite Domain Wide Delegation before proceeding, then:

  1. In a support ticket, request Google Groups authentication to be enabled for your tenant.

  2. We will provide you with a Service Account Client ID.

  3. Log in as a G Suite Super Admin and follow instructions to Delegate Domain-wide authority to your service account to our client ID.

  4. Follow up on the ticket and wait for us to establish connectivity with your G Suite instance.

WARNING: After this, our service account will have the permissions of a G Suite administrator on your domain. It's recommended to pursue one of the other options if you do not want to allow us these permissions.

Updated about 2 months ago