How to configure your SSO provider at HQ
Authentication and Single Sign-On (SSO)
In addition to the standard email and password login, Mitratech HQ can be configured to authenticate users in your organization via SAML or OAuth.
Before You Begin
-
Ensure you have admin rights in both HQ and your Identity Provider (IdP).
-
Collect the following values from HQ Settings:
-
Single Sign-On URL
-
Audience URI (Entity ID)
-
SAML
SAML (Security Assertion Markup Language) is an open-standard protocol for securely exchanging authentication and authorization data between an Identity Provider (IdP) and a Service Provider (SP) — in this case, Mitratech HQ.
HQ supports integration with any SAML 2.0-compliant identity provider to deliver a seamless and secure login experience.
Once users authenticate through your organization’s IdP, they gain instant, one-click access to Mitratech HQ — simple, fast, and secure.
Supported Identity Providers
- How to Set Up Okta SSO Authentication
- How to Set Up Ms Azure/Entra SSO Authentication
- Integrations with providers other than Okta and Azure/Entra are supported through generic SAML 2.0 setup.
OAuth
OAuth (Open Authorization) is an open-standard protocol that allows secure authorization between applications without sharing user credentials. It enables an Identity Provider (IdP) to grant limited access to a Service Provider (SP) — in this case, Mitratech HQ — on behalf of the user.
HQ supports OAuth 2.0 integration exclusively through Google Login.
Users can sign in with their Google Workspace or personal Google accounts for a simple, secure, and password-free login experience.
Once users authenticate with Google, they gain instant access to Mitratech HQ.
Once configured, users in your organization will log in directly via your Identity Provider instead of entering credentials on the HQ login page.