SAML
Data Theorem supports SAML 2.0 to provide Single Sign On authentication for your organization. If you would like to use SAML to authenticate users to Data Theorem, please complete the steps below.
Step-by-step guide
- Download the SAML metadata file from the portal (Login → Gears → DevSecOps → SAML Setup), and provide it to your SSO administrator to configure your SAML Identity Provider
- If your SAML Identity Provider does not support uploading SAML metadata files, then you can use the configuration values provide in the portal:
- EntityID: <Data Available in the Data Theorem Portal>
- Assertion Consumer Service URL: <Data Available in the Data Theorem Portal>
- We require the use of RSA-SHA256 for signing SAML message
- We require users' subject/nameID format to be their email address
- We do not currently require any other attributes to be included the response (eg, the user's name)
- We support the Web Browser SSO Profile.
- We support the HTTP POST Binding for incoming authentication assertions.
- After you have configured your SAML Identity Provider, please email support@datatheorem.com with the following information:
- The SAML metadata file for Data Theorem within your SSO provider. This file should describe how Data Theorem can redirect your users to to your SSO provider, as well as the signing certificate for your SAML Identity Provider.
- The name of the SSO product that you use (eg, Okta, Ping, Azure Active Directory, etc.)
- Contact information for a support contact within your organization for SAML/SSO deployment
- We will then work with you to ensure that SAML is working for a subset of your users before it becomes required for all of your users.
Related articles