Application user authentication methods
In a multi-tenant system, the following authentication methods are supported: SAML and OpenID Connect (OIDC).
Note the following about using the SAML authentication method:
-
SAML and DB Realm can be enabled on the same system, where some tenants authenticate using SAML and some tenants authenticate using DB realm. The system supports a different Identity Provider (IdP) per tenant.
-
All users of the same tenant must authenticate using the same authentication method, with the following exception:
-
For Ad Hoc reports, users must authenticate using DB Realm. You can enable authentication using DBRealm by enabling DB Authentication for each user. For more information, see the Related Information.
-
For Mobile applications, users must authenticate using OpenID Connect or DB Realm.
Authentication configuration
The Service Provider is required to configure the authentication methods based on the guidelines provided in the Authentication Configuration Guide.
Configure tenant SAML authentication method
Authentication Configuration Guide
User Management Guide (Enable DB Authentication for individual employees, Enable DB Authentication for employees (bulk option))