You can configure SSO to enable users belonging to a SAML 2.0 compliant identity provider (IdP) to authenticate users against many Oracle Enterprise Performance Management Cloud environments.

Users use the SSO credentials that they use to access network resources of their organization to authenticate once to an EPM Cloud environment, and then seamlessly access other cloud environments configured using the same IdP.

You may use any SAML 2.0 identity provider, for example, Azure Active Directory (Azure AD), Oracle Identity Federation, Microsoft Active Directory Federation Services 2.0+, Okta, Ping Identity PingFederate, and Shibboleth IdP, to establish SSO.

Oracle Fusion Cloud can be configured with Oracle Identity Federation as the IdP. Similarly, Oracle NetSuite can be configured to use a SAML 2.0 compliant IdP. Additionally, you can integrate Classic EPM Cloud with Oracle Identity Cloud Service to provide SSO access to many Oracle cloud environments.

• Classic EPM Cloud: See "Managing Oracle Single Sign-On " in Administering Oracle Cloud Identity Management for information on how users can access multiple Oracle Cloud services using one set of credentials.
• OCI (Gen2) EPM Cloud: See Add a SAML Identity Provider in Administering Oracle Identity Cloud Service.

Related Information:

• Configuring SSO with OCI EPM Cloud Using Azure AD as the Identity Provider
• Setting up Single Sign-on Using Oracle Identity Cloud Service as an Identity Provider (for Classic EPM Cloud Only)
• Configuring Single Sign-On Between EPM Cloud and Oracle Fusion Cloud
• Configuring Multiple Identity Providers for a Domain in Oracle Identity Cloud Service console (for OCI Gen 2 only)
• Configuring Multiple Identity Providers for a Domain in Oracle Cloud Console (IAM) (for OCI Gen 2 only)