Single Sign on Implementation plan

NetSuite SSO Enablement Project Plan 

PHASE 1: PREPARATION  

(March 26th – March 31st) 

 

  •  Gather and Finalize Requirements 
  • ✅ Confirm roles to be migrated to SSO. 
  • ✅ Identify roles that must remain non-SSO due to integrations (e.g., Invoice Queue, Excel Connectors). 
  • ✅ Get internal IDs of users and roles for CSV upload. 
  • ✅ Determine roles for Sandbox testing (5–10 roles, no users). 
  •  Prepare Communication Plan 
  • ✅ Draft communication email with Corporate Comms  
  • ✅ Include login instructions, password reset alerts, browser recommendations. 
  •  
  • Create Editable Project Plan 
  • ✅ Share collaborative project plan (Google Docs/Excel). 
  • ✅ Define action owners, dates, dependencies. 
  • ✅ Include issue tracker for roadblocks and follow-ups. 

 

PHASE 2: SANDBOX TESTING 

(April 3rd – April 18th)  

  • Select Test Roles (SB2) 
  • ✅ Choose 5–10 roles with no assigned users. 
  • ✅ Assign self/admin for testing purposes. 
  • Execute Sandbox Role Conversion 
  • ⚙️ Enable SSO on selected roles. 
  • ⚙️ Enable 2FA (if applicable). 
  • ⚙️ Perform role reassignment and test login behavior. 
  • Validate Key Scenarios 
  • ⚙️ Test customizations, saved searches, and reporting. 
  • ⚙️ Test integrations (ODBC, Excel Connector). 
  • ⚙️ Validate access switching across roles. 
  • Document Findings 
  • ✅ Record outcomes and issues. 
  • ✅ Adjust approach based on Sandbox testing results. 

 

PHASE 3: PRODUCTION DEPLOYMENT  

(April 19th – May 2nd) 

  •  Pre-Go-Live Tasks 
  • ✅ Send communication email to all users (Corporate Comms). 
  • ✅ Provide user list to Christian for Active Directory updates. 
  • ✅ Prepare CSV files for email updates (using internal IDs). 
  •  
  • Go-Live Start (Day 1) 

 

Task 

Owner 

1. Remove users from obsolete roles 

ABL 

2. Deactivate unnecessary roles and users 

ABL 

3. Update user email addresses via CSV upload 

J&J 

4. Notify users to reset passwords 

J&J 

 

Wait 1–2 days post email update for users to reset passwords

 

  • Phased SSO Enablement  
  • (Day 3 – Phase 1 Roles) 

Task 

Owner 

1. Meta-Data configuration 

J&J and ABL 

1. Enable SSO for roles with 1 user 

J&J 

2. Monitor access issues 

ABL & J&J 

(Day 4 – Phase 2 & 3 Roles) 

Task 

Owner 

1. Enable SSO for mid-size roles (10–15 users) 

J&J 

2. Enable SSO for large roles (>50 users) 

J&J 

3. Enable 2FA for all relevant roles 

J&J 

 

🚩SSO implementation Golive 

May 2nd 

PHASE 4: POST-GO-LIVE & CONTINGENCY PLAN 

  • Post-Go-Live  

Task 

Owner 

1. Confirm users can access via SSO 

Support 

2. Address user issues (cache, login) 

IT Support 

3. Send “Go-Live Complete” email 

Corporate 

  • Contingency Actions (If needed) 

Issue 

Action 

Users blocked 

Roll back SSO on affected roles 

Integration failure 

Exclude role from SSO 

Email update failure 

Manually correct email in UI 

General rollback 

Remove SSO/2FA, reassign roles 

 

 

📝Ownership and Milestone Deadlines 

Milestone 

Deadline 

Owner 

Finalize Role List & Communication 

March 31 

Admin 

Sandbox Testing Completion 

April 17 

J&J/Admin 

Production Email Update & Password Reset 

April 22 

J&J 

SSO Enablement Phase 1 

April 24 

Admin 

SSO Enablement Phases 2 & 3 + 2FA 

April 25 

Admin 

Go-Live Confirmation Communication 

May 2nd 

 

 

Leave a comment

Your email address will not be published. Required fields are marked *