With single sign-on (SSO), organizations that use Customer Data Platform (CDP) can easily govern user access through a third-party identity provider (IdP). SSO helps users to easily sign in to CDP without remembering or storing the password. SSO provides security, increases productivity, and improves user experience.

Capabilities

CDP supports Security Assertion Markup Language (SAML) integration, an industry standard for authorization and authentication. It is used by many common IdPs such as Okta, AWS, Google Cloud, and Azure.

The following are the capabilities of SSO:

• Authorization: Permits users to access a specific resource or function through IdPs.
• Authentication: Validates the identity of users.

Use cases

The following are the use cases of SSO:

• IT administrators get less administrative burden and improved security due to fewer requirements of platform-specific passwords
• End users get a uniform login process for all applications managed by the organization’s IdP.

Important considerations¶

• Single Sign-On is not available for Interactive Queries (IQ).

• Once SSO is activated for a tenant, your organization manages all lockouts and access requests for all users in the tenant. Previous CDP passwords become invalid. If you forget the SSO password, you must consult your SSO administrators.