Skip to content

Configuring SSO

You can contact SailPoint Support to request SSO integration with Access Risk Management. The available integrations are for Azure AD and SAML 2.0 Identity Providers (IdP). After you have configured your SAP account and users in Access Risk Management, those users can log in to the application using their corporate credentials.

Before contacting SailPoint Support, you will need to gather the following information from your IdP:

Azure AD

  • Azure AD Issuer: https://sts.windows.net/AzureADDirectoryID

  • Email addresses or User Principal Names (UPN) for all users in Access Risk Management.

SAML 2.0 Identity Providers

  • URL to download your IdP metadata OR the metadata file for Access Risk Management. Ensure the metadata includes the public key of the certificate that will be used to sign the SAML response.

  • User Name Identifiers for all Access Risk Management users.

After you've collected the above information, contact SailPoint Support to activate the SSO feature on your account.

Note

If your organization is using a SAML 2.0 IdP and the metadata can only be provided in a file format, include the metadata file in your request to SailPoint Support.

Warning

To ensure seamless authentication, it is required to use a single Identity Provider (IdP) configuration for all of your Access Risk Management tenants, including both production and sandbox environments.

Reusing the same IdP metadata configuration across multiple tenants is the supported and necessary method to avoid potential authentication failures.

Documentation Feedback

Feedback is provided as an informational resource only and does not form part of SailPoint’s official product documentation. SailPoint does not warrant or make any guarantees about the feedback (including without limitation as to its accuracy, relevance, or reliability). All feedback is subject to the terms set forth at https://developer.sailpoint.com/discuss/tos.