# SSO with SAML

### Supported Providers

BugBase supports Single Sign-On (SSO) through Security Assertion Markup Language 2.0 (SAML 2.0) for these providers:

* [Okta](https://docs.bugbase.ai/company-guide/company-settings/security-and-authentication/sso-with-saml/okta-sso-setup-via-saml)

### Domain Verification

In order to configure single sign-on via SAML, you need to verify ownership of the domain for your program.

> To verify the ownership of domain:

1. Navigate to Your **Main Company Dashboard > Settings > Domains.**
2. Click on **Add New Domain.**

<figure><img src="https://1542818622-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FVsYaOURvSKmQ57SN2CBT%2Fuploads%2FKrKK8OrIYCG82XIuvZDP%2Fimage.png?alt=media&#x26;token=b11f3003-fa8f-493c-acfd-d3d1f2f76971" alt=""><figcaption></figcaption></figure>

3. Enter your domain and click **Save.**

<figure><img src="https://1542818622-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FVsYaOURvSKmQ57SN2CBT%2Fuploads%2FeS5iE4I5MMsq2yrPsYcF%2Fimage.png?alt=media&#x26;token=b71bdd01-cdae-47f8-ada1-32317a9f1096" alt=""><figcaption></figcaption></figure>

4. Now Add the TXT record shown on your Domain Management portal. After adding the TXT record click on **Verify**.

<figure><img src="https://1542818622-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FVsYaOURvSKmQ57SN2CBT%2Fuploads%2FLU9iWW4PTmlSNb3F0pwU%2Fimage.png?alt=media&#x26;token=45ea3fee-fbc3-406c-a37c-24022c82d463" alt=""><figcaption></figcaption></figure>

> Once your domain is successfully verified, the status of your domain will be changed to *Verified*. You can continue to configure your SAML settings.

###

### Configuring Single Sign-On through SAML

### Setup

> To configure Single Sign-On through SAML:

1. Navigate to Your **Main Company Dashboard > Settings > Security & Authentication.**
2. Click on **Enable SAML single sign-on authentication.**

<figure><img src="https://1542818622-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FVsYaOURvSKmQ57SN2CBT%2Fuploads%2F7HoEpKo78jXA4Kq1E6dy%2Fimage.png?alt=media&#x26;token=dbb4fb8c-014b-49b7-b251-15cc8a3f6a4f" alt=""><figcaption></figcaption></figure>

3. A Set-up modal will pop-up, click on **Setup** **SAML**.

<figure><img src="https://1542818622-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FVsYaOURvSKmQ57SN2CBT%2Fuploads%2FZzVwZ7w139oa6ubNtmvP%2Fimage.png?alt=media&#x26;token=8b263efb-461d-46d6-9fe2-d31907f93806" alt=""><figcaption></figcaption></figure>

4. Next Click on **Enter Configuration**.

<figure><img src="https://1542818622-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FVsYaOURvSKmQ57SN2CBT%2Fuploads%2FgYP4ucZ5RE6k4ACO5K47%2Fimage.png?alt=media&#x26;token=2f30af5b-2bbf-4e7b-948c-62eacb6d68c8" alt=""><figcaption></figcaption></figure>

5. Enter the information from the third-party tool for the following fields:

<table><thead><tr><th width="193">Field</th><th>Details</th></tr></thead><tbody><tr><td>Domain</td><td>A Domain is required for SAML authentication. Select a Domain from the list of verified domains. This domain will be used to login with SSO.</td></tr><tr><td>Single Sign On URL</td><td>The URL from your SAML provider to initiate a single sign-on attempt, sometimes called the login URL.</td></tr><tr><td>X509 Certificate</td><td>The certificate from your SAML provider to verify the single sign-on response.</td></tr></tbody></table>

<figure><img src="https://1542818622-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FVsYaOURvSKmQ57SN2CBT%2Fuploads%2FIREOUsTlO8GSFqKGeLfm%2Fimage.png?alt=media&#x26;token=ff0872f6-e15a-4a70-92b3-9e33a3117cc7" alt=""><figcaption></figcaption></figure>

6. Click **Save.**
7. Next you will asked to test your SAML Configuration, Clicking on **Test and Enable** will log you out of your current session and once you successfully login using SSO, your Single Sign-On will be Enabled.

<figure><img src="https://1542818622-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FVsYaOURvSKmQ57SN2CBT%2Fuploads%2Fo4wj5i1uBOmb6jaztyQH%2Fimage.png?alt=media&#x26;token=07c0440a-38e2-4c7b-976c-cc64bed470a3" alt=""><figcaption></figcaption></figure>

{% hint style="info" %}
**Single Logout**: BugBase only supports logouts Identity Provider (IdP) initiated logouts, that is logging out of BugBase will not log you out of your SSO provider.
{% endhint %}