What is Single Sign-On (SSO)?
Chartbeat SSO lets you delegate user authentication to your external user directory or cloud identity provider. Doing this can help increase security for your organization by providing a centralized place to manage user credentials and also simplifies the log-in experience for your Chartbeat team.
This means that instead of your users providing authentication credentials (email and password) directly to Chartbeat, we send them to your company's identity service to sign in. Whether a user is signed in to Chartbeat will be governed by if they are signed in to their identity service.
Is SSO included in my Chartbeat plan?
Single Sign-On is available to all clients, regardless of package, for a small fee.
We use (OKTA/Azure/Google/etc). What do I need to do to integrate with Chartbeat?
Chartbeat can be integrated with any identity system that supports SAML-based authentication.
While we can integrate with any service that supports SAML-based authentication, we only have integration how-to documents available for the major services:
- OKTA Integration Instructions
- Microsoft Azure Integration Instructions
- Google Integration Instructions
If your team does not use one of these services, the service that you use likely provides instructions for adding a "custom SAML integration".
Clients that have a custom identity solution can use our Custom SAML Integration Instructions.
Our system uses (SAML/OIDC)-based SSO. Does Chartbeat support this?
Chartbeat currently supports SAML-based authentication for SSO.
There are many other authentication protocols out there that we do not currently support, including:
- LDAP
- WS-Fed
- SWA
- OIDC