SSO Overview #

Volcano Engine Access Control (IAM) supports single sign-on (SSO) based on SAML 2.0 and OAuth 2.0 protocols, using the enterprise's own identity as an identity provider (IdP) and Volcano Engine as a service provider (SP) to help you achieve SSO between the enterprise or organization's own identity and Volcano Engine, that is, users can access the SP system with the configured mutual trust relationship through a jump link after logging in to the IdP system.

SSO login method #

Volcano Engine supports the mode of SSO login directly to the console through the enterprise IDP, and also supports the mode of SSO login after the Volcano Engine bounces back to the enterprise IDP login.
On the login page, you can find the entry to the enterprise federated login. When the SSO identity provider is correctly set up in the account, select the corresponding identity source and click "Login Now", it will jump to the internal identity authentication system of the enterprise and enter the console after completing the login.

SSO type #

Volcano Engine supports different SSO methods for logging into Volcano Engine as child users and roles. For details, please refer to: Applicable scenarios for user SSO and role SSO