SAML SSO Overview

Starting October 19, 2022, you can connect your corporate identity provider to using the Platform's Identity service. Once connected, Platform will act as an identity broker between your IdP (Identity Provider) and Digital.ai, allowing your users to securely access all products and the support, documentation, and community portals using the same credentials they use throughout your enterprise.
If you have not yet migrated your single sign-on (SSO) and user management to the Platform and want to do so, write to (mailto:support@digital.ai) [support@digital.ai] for assistance.

If you are already using the Platform for SSO and want to learn more about the Identity service, click here. If you have any further questions, please reach out to your contact or write to (mailto:support@digital.ai) [support@digital.ai].

Overview

Security Assertion Markup Language (SAML) is an XML-based framework for communicating user authentication, entitlement, and attribute information. Using SAML organization can centralize employee identity and authentication. Once authenticated, employees can access other protected resources in the organization without needing to re-authenticate. SAML enables web based Single Sign-On (SSO) by redirecting the browser to a centralized authentication service when the user has not been authenticated. The main actors in a SAML environment are:

• Identity Provider - The service responsible for authentication.
• Service Provider - The protected resource required by your employee.

Digital.ai Agility

SAML-based SSO is available to both on-demand (V1 hosted) and on-premise Agilitycustomers. Using SAML, Agility integrates with your SSO environment and defers to your identity provider for user authentication when anyone attempts to access your Agility instance. This eliminates the need for separate credentials managed inside Agility . It also gives you better control over authentication, access and more flexibility with password rules for your users.

The following diagram illustrates SAML SSO using the Digital.ai Agility web application

1. This diagram illustrates an unauthenticated user flow that starts with the user trying to access the Agility web application.
2. Agility requires external (3rd party) software to fulfill the Service Provider role, which is why Agility and the Service Provider are shown as separate entities.

• On-Demand customers should review the On-Demand SSO article for additional information and configuration details.
• On-Premises customers should review the On-Premise SSO article for additional information and configuration details.

Additional Information

For addition information on SSO and SAML can be found on these external websites:

• The SAML Executive Overview(PDF)
• A Concert Goers Guide To SAML
• The Online Community for SAML

Related concepts

Platform concepts