Skip to content

Latest commit

 

History

History
46 lines (31 loc) · 1.86 KB

oidc-sso-integration.md

File metadata and controls

46 lines (31 loc) · 1.86 KB
description
This page will help you set up OIDC SSO with your identity provider to log into Acryl Data

import FeatureAvailability from '@site/src/components/FeatureAvailability';

Enable OIDC SSO

This guide will walk you through configuring OIDC Single Sign-On in DataHub Cloud.

Step 1. Complete OIDC Prerequisites

You will need the following in order to enable OIDC SSO in DataHub Cloud:

  • Gather the Client ID, Client Secret, and Discovery URI for your OIDC provider, as detailed in this guide.
  • Confirm you have the Manage Platform Settings privilege in DataHub.

Step 2. Enable OIDC SSO

  1. In DataHub Cloud, navigate to Settings > Platform > SSO and choose OIDC.

  1. Enter the Client ID, Client Secret, and Discovery URI from Step 1.

  2. Confirm your preferred User Provisioning Strategy:

    • Just-in-Time (JIT) Provisioning is enabled by default, automatically creating a DataHub User on login if one does not exist.
    • Pre-Provisioning DataHub Users will only allow login for pre-provisioned DataHub Users. Requires configuring SSO Ingestion.

  3. Optionally enable Extract Groups to extract group memberships in the OIDC profile by default. Requires JIT Provisioning.

  4. Click Connect.

  5. Log out and log back in through SSO to confirm connection succeeded.

:::note We do not yet support LDAP or SAML authentication. Please let us know if either of these integrations would be useful for your organization. :::