When enabled you can specify that anyone in your organization can join or you can further restrict it by specifying only specific people or groups of people.

With participant SSO enabled in your account you will see an extra option appear in your identification settings menu.

1. Within your session open the settings menu.
2. Go to the Identification tab.
3. Make sure the session is set to Identified. Currently it is only possible to have an authenticated session when the identification setting is ON.  It is not possible to have fully anonymous sessions when participants use authentication.
4. Turn on SAML SSO authentication.

The default setting is for everyone in your organisation to be able to join the session.

You can leave this as it is or you can remove 'Everyone' and enter in the email addresses of specific individuals you would like to give access to.  You can only specify the email address of people within your organization to join the session.  External email addresses will not work.

It is also possible to invite groups of people rather than individual email addresses.  This is something that can be configured by your Account Admin.  When this is set up the groups available will be listed as options here.