How to Request Salesforce "Delegated Authentication" Single Sign-On Feature Activation

  • Updated
WARNING: The Riva for Salesforce Single Sign-On connection strategy described in this article is not supported for new Riva On-Premise installations.

New Riva On-Premise installations include a new strategy to provide impersonation access into Salesforce: the Standard Impersonation Model. For instructions on implementing the Standard Impersonation Model, see Prepare Salesforce for Riva and Create and test a Salesforce connection.

For current Riva On-Premise installations that use Salesforce Single Sign-On, administrators are encouraged to upgrade their Riva for Salesforce connection setup to the Standard Impersonation Model. For assistance, contact the Riva Success Team.

The procedures in the following article have been deprecated. The information is being retained for clients who have not yet converted to the new Standard Impersonation Model.


Salesforce allows two different authentication methods.  By default, only SAML is activated.

SAML is only available for “browser-based authentication” and does not work for applications that use the Salesforce (Web Services) API.  This is true for native Salesforce applications as well as third-party applications.

Applications require what is called “Delegated Authentication” (DA-SSO) a form of Single Sign-On which is an additional free feature that must be activated on a per-Salesforce organization basis.

To enable Riva DA-SSO for a given deployment, each customer must request enable the "Delegate Authentication feature" for their company.

How to Submit the Feature Activation Request

To submit the request:

  1. Login into as the company admin account.

  2. Open a support case and configure it as follows:


    - For Problem Type select Feature Activation
    - For Problem Area select Login and Feature Activation
    - For the Subject type in "Enable Delegated Authentication"
    - For Description type in a suitable description
    - For Security Level - select Level 4 - Medium

  3. Click the Next button.

  4. You should see a confirmation window.


How to confirm successful "DA-SSO" Feature Activation

To confirm that the organization has been properly SSO enabled, from the Setup administration panel, 


select the Administration Setup -> Security Controls -> Single Sign-On Settings



If the "Delegated authentication" section is missing / not there, contact Salesforce Support to have this feature activated for your organization.  If you do not have the ability to edit the "Delegated Gateway URL", the feature is NOT activated.

Was this article helpful?




Article is closed for comments.