[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"docs-navigation-zh":3,"layout-toc-zh-/docs/integrations/sso-setup":222,"docs-page-zh-/integrations/sso-setup":716},[4],{"title":5,"path":6,"stem":7,"children":8,"page":221},"Docs","/docs","docs",[9,37,66,98,117,140,159,169,185,213],{"title":10,"path":11,"stem":12,"children":13,"page":-1,"icon":15,"order":16},"欢迎使用 InterMIND","/docs/getting-started","docs/1.getting-started/index",[14,17,22,27,32],{"title":10,"path":11,"stem":12,"icon":15,"order":16},"i-heroicons-rocket-launch",1,{"title":18,"path":19,"stem":20,"icon":21,"order":16},"登录","/docs/getting-started/sign-in","docs/1.getting-started/1.sign-in",null,{"title":23,"path":24,"stem":25,"icon":21,"order":26},"创建账户","/docs/getting-started/account","docs/1.getting-started/2.account",2,{"title":28,"path":29,"stem":30,"icon":21,"order":31},"您的第一次会议","/docs/getting-started/first-meeting","docs/1.getting-started/3.first-meeting",3,{"title":33,"path":34,"stem":35,"icon":21,"order":36},"系统要求","/docs/getting-started/system-requirements","docs/1.getting-started/4.system-requirements",4,{"title":38,"path":39,"stem":40,"children":41,"page":-1,"icon":43,"order":26},"实时翻译","/docs/translation","docs/2.translation/index",[42,44,48,52,56,61],{"title":38,"path":39,"stem":40,"icon":43,"order":26},"i-heroicons-language",{"title":45,"path":46,"stem":47,"icon":21,"order":26},"选择语言","/docs/translation/languages","docs/2.translation/1.languages",{"title":49,"path":50,"stem":51,"icon":21,"order":31},"实时字幕","/docs/translation/subtitles","docs/2.translation/2.subtitles",{"title":53,"path":54,"stem":55,"icon":21,"order":36},"转录","/docs/translation/transcription","docs/2.translation/3.transcription",{"title":57,"path":58,"stem":59,"icon":21,"order":60},"使用限额","/docs/translation/limits","docs/2.translation/4.limits",5,{"title":62,"path":63,"stem":64,"icon":21,"order":65},"您的原声","/docs/translation/own-voice","docs/2.translation/5.own-voice",6,{"title":67,"path":68,"stem":69,"children":70,"page":-1,"icon":72,"order":31},"会议与视频会议","/docs/meetings","docs/3.meetings/index",[71,73,77,81,85,89,94],{"title":67,"path":68,"stem":69,"icon":72,"order":31},"i-heroicons-video-camera",{"title":74,"path":75,"stem":76,"icon":21,"order":26},"开始会议","/docs/meetings/start","docs/3.meetings/1.start",{"title":78,"path":79,"stem":80,"icon":21,"order":31},"加入会议","/docs/meetings/join","docs/3.meetings/2.join",{"title":82,"path":83,"stem":84,"icon":21,"order":36},"会议控件","/docs/meetings/controls","docs/3.meetings/3.controls",{"title":86,"path":87,"stem":88,"icon":21,"order":60},"屏幕共享与录制","/docs/meetings/screen-sharing","docs/3.meetings/4.screen-sharing",{"title":90,"path":91,"stem":92,"icon":21,"order":93},"表情反应与举手","/docs/meetings/reactions","docs/3.meetings/5.reactions",7,{"title":95,"path":96,"stem":97,"icon":21,"order":65},"访客访问","/docs/meetings/guest-access","docs/3.meetings/6.guest-access",{"title":99,"path":100,"stem":101,"children":102,"page":-1,"icon":104,"order":36},"聊天","/docs/chat","docs/4.chat/index",[103,105,109,113],{"title":99,"path":100,"stem":101,"icon":104,"order":36},"i-heroicons-chat-bubble-left-right",{"title":106,"path":107,"stem":108,"icon":21,"order":26},"消息","/docs/chat/messages","docs/4.chat/1.messages",{"title":110,"path":111,"stem":112,"icon":21,"order":36},"聊天翻译","/docs/chat/translation","docs/4.chat/2.translation",{"title":114,"path":115,"stem":116,"icon":21,"order":31},"文件共享","/docs/chat/files","docs/4.chat/3.files",{"title":118,"path":119,"stem":120,"children":121,"page":-1,"icon":123,"order":60},"设置","/docs/settings","docs/5.settings/index",[122,124,128,132,136],{"title":118,"path":119,"stem":120,"icon":123,"order":60},"i-heroicons-cog-6-tooth",{"title":125,"path":126,"stem":127,"icon":21,"order":26},"个人资料设置","/docs/settings/profile","docs/5.settings/1.profile",{"title":129,"path":130,"stem":131,"icon":21,"order":31},"外观","/docs/settings/appearance","docs/5.settings/2.appearance",{"title":133,"path":134,"stem":135,"icon":21,"order":60},"会议默认设置","/docs/settings/meeting-defaults","docs/5.settings/3.meeting-defaults",{"title":137,"path":138,"stem":139,"icon":21,"order":36},"键盘快捷键","/docs/settings/keyboard-shortcuts","docs/5.settings/4.keyboard-shortcuts",{"title":141,"path":142,"stem":143,"children":144,"page":-1,"icon":146,"order":65},"团队管理","/docs/users","docs/6.users/index",[145,147,151,155],{"title":141,"path":142,"stem":143,"icon":146,"order":65},"i-heroicons-user-group",{"title":148,"path":149,"stem":150,"icon":21,"order":26},"邀请成员","/docs/users/inviting","docs/6.users/1.inviting",{"title":152,"path":153,"stem":154,"icon":21,"order":31},"成员管理","/docs/users/managing","docs/6.users/2.managing",{"title":156,"path":157,"stem":158,"icon":21,"order":36},"团队存储","/docs/users/storage","docs/6.users/3.storage",{"title":160,"path":161,"stem":162,"children":163,"page":-1,"icon":21,"order":93},"集成","/docs/integrations","docs/7.integrations/index",[164,165],{"title":160,"path":161,"stem":162,"icon":21,"order":93},{"title":166,"path":167,"stem":168,"icon":21,"order":16},"SSO 设置","/docs/integrations/sso-setup","docs/7.integrations/1.sso-setup",{"title":170,"path":171,"stem":172,"children":173,"page":-1,"icon":175,"order":176},"计费与套餐","/docs/billing","docs/8.billing/index",[174,177,181],{"title":170,"path":171,"stem":172,"icon":175,"order":176},"i-heroicons-credit-card",8,{"title":178,"path":179,"stem":180,"icon":21,"order":26},"管理您的订阅","/docs/billing/manage","docs/8.billing/1.manage",{"title":182,"path":183,"stem":184,"icon":21,"order":31},"用量与账单","/docs/billing/usage","docs/8.billing/2.usage",{"title":186,"path":187,"stem":188,"children":189,"page":-1,"icon":191,"order":192},"故障排除","/docs/troubleshooting","docs/9.troubleshooting/index",[190,193,197,201,205,209],{"title":186,"path":187,"stem":188,"icon":191,"order":192},"i-heroicons-wrench-screwdriver",9,{"title":194,"path":195,"stem":196,"icon":21,"order":16},"音频问题","/docs/troubleshooting/audio","docs/9.troubleshooting/1.audio",{"title":198,"path":199,"stem":200,"icon":21,"order":26},"视频和摄像头问题","/docs/troubleshooting/video","docs/9.troubleshooting/2.video",{"title":202,"path":203,"stem":204,"icon":21,"order":31},"翻译质量","/docs/troubleshooting/translation-quality","docs/9.troubleshooting/3.translation-quality",{"title":206,"path":207,"stem":208,"icon":21,"order":36},"网络与连接","/docs/troubleshooting/network","docs/9.troubleshooting/4.network",{"title":210,"path":211,"stem":212,"icon":21,"order":60},"浏览器与设备","/docs/troubleshooting/browsers","docs/9.troubleshooting/5.browsers",{"title":214,"path":215,"stem":216,"children":217,"icon":219,"order":220},"安全与隐私","/docs/security","docs/99.security/index",[218],{"title":214,"path":215,"stem":216,"icon":219,"order":220},"i-heroicons-shield-check",99,false,{"id":223,"title":166,"body":224,"description":710,"extension":711,"icon":21,"meta":712,"navigation":713,"path":167,"screenshots":21,"seo":714,"stem":168,"__hash__":715},"docs_zh/docs/7.integrations/1.sso-setup.md",{"type":225,"value":226,"toc":699},"minimark",[227,231,240,254,258,287,291,298,346,353,360,412,415,419,473,477,525,529,539,542,570,573,666,669],[228,229,166],"h1",{"id":230},"sso-设置",[232,233,234,235,239],"p",{},"本指南面向负责将企业身份提供商(IdP)连接到 InterMIND 的 IT 管理员。设置完成后,成员可从常规登录页面登录:",[236,237,238],"strong",{},"Sign in with SSO"," → 工作邮箱 → 您的 IdP → 返回 InterMIND。",[232,241,242,245,246,249,250,253],{},[236,243,244],{},"适用计划:"," Business 和 Enterprise\n",[236,247,248],{},"配置者:"," 团队所有者或管理员\n",[236,251,252],{},"协议:"," OpenID Connect (OIDC)。SAML 2.0 登录正在开发中——SAML 配置可保存但尚不能用于登录。",[255,256,257],"h2",{"id":257},"前置条件",[259,260,261,275],"ol",{},[262,263,264,265,268,269,274],"li",{},"一个",[236,266,267],{},"已验证的域名","——首先通过 DNS TXT 记录验证您的邮箱域名(请参阅 ",[270,271,273],"a",{"href":272},"/docs/integrations#domain-management","Domain Management",")。SSO 登录仅接受邮箱域名已被您团队验证的账户;这是租户边界。",[262,276,277,278,281,282,286],{},"支持 ",[236,279,280],{},"OIDC 发现机制","的 IdP——必须在 Issuer URL 下提供 ",[283,284,285],"code",{},"/.well-known/openid-configuration","。Okta、Microsoft Entra ID 和 Google 都支持。",[255,288,290],{"id":289},"在您的-idp-中需要注册的内容","在您的 IdP 中需要注册的内容",[232,292,293,294,297],{},"在您的 IdP 中创建一个 ",[236,295,296],{},"OIDC Web Application",",配置如下:",[299,300,301,313],"table",{},[302,303,304],"thead",{},[305,306,307,310],"tr",{},[308,309,118],"th",{},[308,311,312],{},"值",[314,315,316,328,336],"tbody",{},[305,317,318,322],{},[319,320,321],"td",{},"重定向 URI(回调)",[319,323,324,327],{},[283,325,326],{},"https://intermind.com/api/auth/sso/callback","——选择 OIDC 后也会显示在 SSO 卡片中",[305,329,330,333],{},[319,331,332],{},"授权类型",[319,334,335],{},"Authorization Code(自动使用 PKCE S256)",[305,337,338,341],{},[319,339,340],{},"Scopes",[319,342,343],{},[283,344,345],{},"openid email profile",[232,347,348,349,352],{},"您的 IdP 颁发的 ID token 必须包含用户的 ",[283,350,351],{},"email",",且该邮箱的域名必须是您已验证的域名之一——否则登录将被拒绝。",[232,354,355,356,359],{},"然后在集成页面填写 ",[236,357,358],{},"SSO"," 卡片:",[299,361,362,372],{},[302,363,364],{},[305,365,366,369],{},[308,367,368],{},"字段",[308,370,371],{},"填写内容",[314,373,374,382,393,404],{},[305,375,376,379],{},[319,377,378],{},"显示名称",[319,380,381],{},"您的成员易于识别的任意标签",[305,383,384,387],{},[319,385,386],{},"Issuer URL",[319,388,389,390,392],{},"您 IdP 的 issuer——即提供 ",[283,391,285],{}," 的 URL",[305,394,395,398],{},[319,396,397],{},"Authorization URL",[319,399,400,401],{},"来自该发现文档的 ",[283,402,403],{},"authorization_endpoint",[305,405,406,409],{},[319,407,408],{},"Client ID / Client Secret",[319,410,411],{},"来自您注册的应用",[232,413,414],{},"客户端密钥经静态加密存储,保存后不会再返回给浏览器。",[255,416,418],{"id":417},"okta","Okta",[259,420,421,435,443,446,456],{},[262,422,423,424,427,428,431,432],{},"管理控制台 → ",[236,425,426],{},"Applications → Create App Integration"," → 登录方式选择 ",[236,429,430],{},"OIDC",",应用类型选择 ",[236,433,434],{},"Web Application",[262,436,437,440,441],{},[236,438,439],{},"Sign-in redirect URI:"," ",[283,442,326],{},[262,444,445],{},"分配应当具有访问权限的用户或组",[262,447,448,449,452,453],{},"复制 ",[236,450,451],{},"Client ID"," 和 ",[236,454,455],{},"Client Secret",[262,457,458,459,462,463,466,467,470,471],{},"在 InterMIND 中:Issuer URL = 您的 Okta 组织 URL(例如 ",[283,460,461],{},"https://acme.okta.com",",或者如果您使用了授权服务器,则为该服务器的 issuer,如 ",[283,464,465],{},"https://acme.okta.com/oauth2/default",");Authorization URL = 来自 ",[283,468,469],{},"\u003Cissuer>/.well-known/openid-configuration"," 的 ",[283,472,403],{},[255,474,476],{"id":475},"microsoft-entra-id-azure-ad","Microsoft Entra ID (Azure AD)",[259,478,479,485,494,503,509,515],{},[262,480,481,482],{},"Entra 管理中心 → ",[236,483,484],{},"App registrations → New registration",[262,486,487,488,491,492],{},"平台选择 ",[236,489,490],{},"Web",",重定向 URI 为 ",[283,493,326],{},[262,495,496,499,500],{},[236,497,498],{},"Certificates & secrets → New client secret","——立即复制密钥的 ",[236,501,502],{},"Value",[262,504,505,506],{},"Client ID = 概览页面上的 ",[236,507,508],{},"Application (client) ID",[262,510,511,512],{},"确保 ID token 携带用户的邮箱:",[236,513,514],{},"Token configuration → Add optional claim → ID → email",[262,516,517,518,521,522],{},"在 InterMIND 中:Issuer URL = ",[283,519,520],{},"https://login.microsoftonline.com/\u003Ctenant-id>/v2.0",";Authorization URL = ",[283,523,524],{},"https://login.microsoftonline.com/\u003Ctenant-id>/oauth2/v2.0/authorize",[255,526,528],{"id":527},"google-workspace","Google Workspace",[232,530,531,532,534,535,538],{},"无需注册应用。在 SSO 卡片中选择 ",[236,533,528],{}," 提供商类型并保存——已验证域名上的成员使用其 Google 账户登录,即可自动加入您的团队。(如果您希望使用显式的客户端凭据,也可以将 Google 作为通用 OIDC 提供商连接,issuer 为 ",[283,536,537],{},"https://accounts.google.com","。)",[255,540,541],{"id":541},"测试连接",[259,543,544,547,553,556],{},[262,545,546],{},"在私密/无痕窗口中打开登录页面",[262,548,549,550,552],{},"点击 ",[236,551,238],{}," 并输入您已验证域名上的工作邮箱",[262,554,555],{},"系统会将您重定向到您的 IdP;身份验证后,您将返回 InterMIND 并完成登录",[262,557,558,559,562,563,566,567],{},"此次登录会被记录在团队审计日志中(可从 ",[236,560,561],{},"Users"," 页面导出),类型为 ",[283,564,565],{},"auth.login",",方式为 ",[283,568,569],{},"sso",[255,571,572],{"id":572},"故障排查",[299,574,575,585],{},[302,576,577],{},[305,578,579,582],{},[308,580,581],{},"现象",[308,583,584],{},"原因",[314,586,587,595,605,615,625,635,647,655],{},[305,588,589,592],{},[319,590,591],{},"输入邮箱后提示 \"SSO is not configured\"",[319,593,594],{},"没有启用的 SSO 配置匹配该邮箱域名——请检查域名已验证且 SSO 卡片已保存",[305,596,597,602],{},[319,598,599],{},[283,600,601],{},"SSO login is not available: plan",[319,603,604],{},"团队的计划已不再包含 SSO",[305,606,607,612],{},[319,608,609],{},[283,610,611],{},"SSO login is not available: domain-not-verified",[319,613,614],{},"域名仍在等待 DNS 验证",[305,616,617,622],{},[319,618,619],{},[283,620,621],{},"SSO login is not available: config-incomplete",[319,623,624],{},"Client ID 或 Client Secret 缺失——请重新保存 SSO 卡片",[305,626,627,632],{},[319,628,629],{},[283,630,631],{},"SSO login is not available: type-unsupported",[319,633,634],{},"已存储的配置为 SAML——SAML 登录尚不可用",[305,636,637,642],{},[319,638,639],{},[283,640,641],{},"SSO IdP discovery failed",[319,643,644,645],{},"Issuer URL 错误或未提供 ",[283,646,285],{},[305,648,649,652],{},[319,650,651],{},"\"login session expired, start again\"",[319,653,654],{},"从开始登录到 IdP 回调之间超过 5 分钟",[305,656,657,660],{},[319,658,659],{},"IdP 重定向返回后登录被拒",[319,661,662,663,665],{},"IdP 返回的邮箱不在您已验证的域名内,或完全未返回 ",[283,664,351],{}," claim(Entra:添加可选的 email claim)",[255,667,668],{"id":668},"安全特性",[232,670,671,672,675,676,452,679,682,683,686,687,690,691,694,695,698],{},"用于安全问卷:SSO 流程为带 ",[236,673,674],{},"PKCE (S256)","、",[236,677,678],{},"state",[236,680,681],{},"nonce"," 的 Authorization Code;ID token 的",[236,684,685],{},"签名通过 IdP 的 JWKS 进行验证",",同时校验 issuer 和 audience;IdP 仅对",[236,688,689],{},"通过 DNS 验证的域名","具有权威性——针对其他任何邮箱的断言都不会生成会话;OIDC 客户端密钥",[236,692,693],{},"静态加密存储",";每一次 SSO 登录都会进入团队",[236,696,697],{},"审计日志","。计划、域名和配置门槛在登录开始和回调两端均由服务端强制校验。",{"title":700,"searchDepth":26,"depth":31,"links":701},"",[702,703,704,705,706,707,708,709],{"id":257,"depth":26,"text":257},{"id":289,"depth":26,"text":290},{"id":417,"depth":26,"text":418},{"id":475,"depth":26,"text":476},{"id":527,"depth":26,"text":528},{"id":541,"depth":26,"text":541},{"id":572,"depth":26,"text":572},{"id":668,"depth":26,"text":668},"连接 Okta、Microsoft Entra ID 或 Google Workspace,让您的团队通过身份提供商登录。","md",{},{"order":16},{"title":166,"description":710},"GR1bSPO_U8MeuMHqVq6adeKMgMie-4Mqk3w9YaTIQUI",{"page":717,"surround":1045},{"id":223,"title":166,"body":718,"description":710,"extension":711,"icon":21,"meta":1042,"navigation":1043,"path":167,"screenshots":21,"seo":1044,"stem":168,"__hash__":715},{"type":225,"value":719,"toc":1032},[720,722,726,734,736,750,752,756,790,794,798,838,840,842,876,878,910,912,918,920,938,940,1014,1016],[228,721,166],{"id":230},[232,723,234,724,239],{},[236,725,238],{},[232,727,728,245,730,249,732,253],{},[236,729,244],{},[236,731,248],{},[236,733,252],{},[255,735,257],{"id":257},[259,737,738,744],{},[262,739,264,740,268,742,274],{},[236,741,267],{},[270,743,273],{"href":272},[262,745,277,746,281,748,286],{},[236,747,280],{},[283,749,285],{},[255,751,290],{"id":289},[232,753,293,754,297],{},[236,755,296],{},[299,757,758,766],{},[302,759,760],{},[305,761,762,764],{},[308,763,118],{},[308,765,312],{},[314,767,768,776,782],{},[305,769,770,772],{},[319,771,321],{},[319,773,774,327],{},[283,775,326],{},[305,777,778,780],{},[319,779,332],{},[319,781,335],{},[305,783,784,786],{},[319,785,340],{},[319,787,788],{},[283,789,345],{},[232,791,348,792,352],{},[283,793,351],{},[232,795,355,796,359],{},[236,797,358],{},[299,799,800,808],{},[302,801,802],{},[305,803,804,806],{},[308,805,368],{},[308,807,371],{},[314,809,810,816,824,832],{},[305,811,812,814],{},[319,813,378],{},[319,815,381],{},[305,817,818,820],{},[319,819,386],{},[319,821,389,822,392],{},[283,823,285],{},[305,825,826,828],{},[319,827,397],{},[319,829,400,830],{},[283,831,403],{},[305,833,834,836],{},[319,835,408],{},[319,837,411],{},[232,839,414],{},[255,841,418],{"id":417},[259,843,844,852,858,860,866],{},[262,845,423,846,427,848,431,850],{},[236,847,426],{},[236,849,430],{},[236,851,434],{},[262,853,854,440,856],{},[236,855,439],{},[283,857,326],{},[262,859,445],{},[262,861,448,862,452,864],{},[236,863,451],{},[236,865,455],{},[262,867,458,868,462,870,466,872,470,874],{},[283,869,461],{},[283,871,465],{},[283,873,469],{},[283,875,403],{},[255,877,476],{"id":475},[259,879,880,884,890,896,900,904],{},[262,881,481,882],{},[236,883,484],{},[262,885,487,886,491,888],{},[236,887,490],{},[283,889,326],{},[262,891,892,499,894],{},[236,893,498],{},[236,895,502],{},[262,897,505,898],{},[236,899,508],{},[262,901,511,902],{},[236,903,514],{},[262,905,517,906,521,908],{},[283,907,520],{},[283,909,524],{},[255,911,528],{"id":527},[232,913,531,914,534,916,538],{},[236,915,528],{},[283,917,537],{},[255,919,541],{"id":541},[259,921,922,924,928,930],{},[262,923,546],{},[262,925,549,926,552],{},[236,927,238],{},[262,929,555],{},[262,931,558,932,562,934,566,936],{},[236,933,561],{},[283,935,565],{},[283,937,569],{},[255,939,572],{"id":572},[299,941,942,950],{},[302,943,944],{},[305,945,946,948],{},[308,947,581],{},[308,949,584],{},[314,951,952,958,966,974,982,990,1000,1006],{},[305,953,954,956],{},[319,955,591],{},[319,957,594],{},[305,959,960,964],{},[319,961,962],{},[283,963,601],{},[319,965,604],{},[305,967,968,972],{},[319,969,970],{},[283,971,611],{},[319,973,614],{},[305,975,976,980],{},[319,977,978],{},[283,979,621],{},[319,981,624],{},[305,983,984,988],{},[319,985,986],{},[283,987,631],{},[319,989,634],{},[305,991,992,996],{},[319,993,994],{},[283,995,641],{},[319,997,644,998],{},[283,999,285],{},[305,1001,1002,1004],{},[319,1003,651],{},[319,1005,654],{},[305,1007,1008,1010],{},[319,1009,659],{},[319,1011,662,1012,665],{},[283,1013,351],{},[255,1015,668],{"id":668},[232,1017,671,1018,675,1020,452,1022,682,1024,686,1026,690,1028,694,1030,698],{},[236,1019,674],{},[236,1021,678],{},[236,1023,681],{},[236,1025,685],{},[236,1027,689],{},[236,1029,693],{},[236,1031,697],{},{"title":700,"searchDepth":26,"depth":31,"links":1033},[1034,1035,1036,1037,1038,1039,1040,1041],{"id":257,"depth":26,"text":257},{"id":289,"depth":26,"text":290},{"id":417,"depth":26,"text":418},{"id":475,"depth":26,"text":476},{"id":527,"depth":26,"text":528},{"id":541,"depth":26,"text":541},{"id":572,"depth":26,"text":572},{"id":668,"depth":26,"text":668},{},{"order":16},{"title":166,"description":710},[1046,1048],{"title":160,"path":161,"stem":162,"description":1047,"order":93,"children":-1},"配置推送通知、日历、目录同步和 SSO。",{"title":170,"path":171,"stem":172,"description":1049,"order":176,"children":-1},"InterMIND 订阅套餐、定价及计费管理概览。"]