Secure Login Access

Important

If you are performing an Incorta version upgrade, please refer to the corresponding upgrade guide. Instructions for SSO upgrade configurations can vary based on your current Incorta version and the target upgrade version.

You can secure login access by configuring:

  • SSO (details on this page).
  • Auth0 (Incorta provides support for Auth0 SDKs).
  • Incorta self-sync.

SSO enables users to log in to different applications with only one username and one password through the organization's SSO portal. Incorta supports SAML2-based logins for SSO, including:

Configure SSO using CMC

Incorta enables you to configure your SSO provider using the CMC. Apply the following steps to configure the SSO:

  1. Open the CMC and login.
  2. Select Clusters > cluster-name > Tenants > tenant-name.
  3. Select Configure.
  4. Select panel, choose Security.
  5. Configure the following properties to start using your SSO:
PropertyDescription
Authentication TypeSelect the authentication type that you will use for the chosen tenant. In this case, it will be SSO.
Provider TypeSelect the SSO provider you are going to use. Current available values:

  ●  SAML2
  ●  Okta
  ●  Auth0
  ●  Custom
Provider nameThis property is only available when you choose Custom as a provider type. Enter the SSO provider name that you are using.
Provider configurationsEnter the properties or XML configurations for the SSO provider you have selected. You can get these configurations from the configurations file for each SSO.
Note

You must apply the upcoming steps whether you are configuring your SSO for the first time or upgrading your Incorta cluster.

  1. From the Clusters tab, select cluster-name > Cluster Configurations > Default Tenant Configurations.
  2. From the left pane, select Email.
  3. Configure the Server URL Protocol, Server Name, and Server Port.

If you are configuring the SSO for the first time, you must restart Incorta services.

Note

If you are just updating the settings for the SSO you are already using, you do not need to restart Incorta services.

Enable SSO for a Tenant

From the Tenant Management Tool (TMT), enter the following command: ./tmt.sh -clnm <CLUSTER_NAME> --update-property <tenantname> sso-login-enable true