How-to | Activate single sign-on (SSO)#
Single sign-on (SSO) can be activated upon request by the support team for eligible subscriptions with the information detailed below.
To do so, you will need to:
Create an application in your identity provider to connect with our service.
Send us the information so our team can set it up.
Create a Dataiku Cloud application in your identity provider#
First, you need to create a Dataiku Cloud application in your identity provider. Please check the documentation of your identity provider. To do so you will need to provide the following information:
Single sign-on URL:
You need to replace
dataiku_space_idby your space ID that can be found in the Settings panel of your Launchpad.
Map the following value to the relevant attribute in your identity provider or fixed value:
given_nameto the attribute representing the user’s first name.
family_nameto the attribute representing the user’s last name.
user_idto the attribute representing the user’s email address in lowercase.
email_verifiedset to the value
Avoid mapping any additional attributes or adding namespaces for these attributes.
To send to lowercase, use
toLowercase(attribute)in Azure AD and
String.toLowerCase(attribute)in Okta. If you are utilizing different Identity Providers (IdPs), please refer to their respective documentation.
Contact us with the correct information#
You will need to gather the following information:
The single-sign-on (SSO) URL for your identity provider
The x.509 certificate
Or your identity provider Metadata link
The email domain you wish to use with SAML
The space id
Please send this information on support chat on Dataiku Cloud or mail to support-dataikucloud -at- dataiku -dot- com to get the SSO activated on your subscription. We will get back to you when the setup is ready or if we need additional information.