CloudCheckr supports native username/password-based authentication for all pricing plans and tiers. By upgrading to an enterprise plan, your organization gets Single-Sign On (SSO) integration with one of the following SAML identity providers (IdP):
SSO integration allows your organization to leverage various authentication options to meet your IT security requirements. Your organization can also combine authentication methods so that users can login via SSO and native username/password-based authentication.
Note: If your organization uses a different SSO provider than those listed, additional customizations may be required. Please email sales for information regarding support of other SAML-compliant SSO providers.
ENABLE AND CONFIGURE SSO
To enable SSO, please submit a ticket to the CloudCheckr Service Desk Portal , so that a support engineer can guide you on how to:
- generate SAML IdP metadata / and or provide Azure Tenant ID (Directory ID)
- choose a default role for new users created by SSO
- validate that the authentication process is working in your environment successfully
Note: CloudCheckr’s authentication is initiated by an IdP provider rather than a SAML service provider (SP). Although CloudCheckr will provision your users for the first-time logon, your organization must enable specific permissions and account access for your CloudCheckr users. For more information, see the User Management and User Groups topics.
At this time, CloudCheckr supports IdP providers that are compliant with SAML 2.0.