Configuring Single Sign-On

You can configure SSO to enable users belonging to a SAML 2.0 compliant identity provider (IdP) to authenticate against many Oracle cloud environments.

Note:

Oracle Fusion Cloud Enterprise Performance Management and Oracle Fusion Cloud Enterprise Data Management support only Service Provider (SP) initiated SSO; it does not support IdP initiated SSO.

Users use the SSO credentials that they use to access network resources of their organization to authenticate once to an environment, and then seamlessly access other cloud environments configured using the same IdP.

You may use any SAML 2.0IdP, for example, Microsoft Entra ID, Oracle Identity Federation, Microsoft Active Directory Federation Services 2.0+, Okta, Ping Identity PingFederate, and Shibboleth, to establish SSO.

Oracle Cloud can be configured with Oracle Identity Federation as the IdP. Similarly, Oracle NetSuite can be configured to use a SAML 2.0 compliant IdP. See Add a SAML Identity Provider in Administering Oracle Identity Cloud Service.

Note:

The information in this section does not apply to SaaS at Customer (Cloud EPM and Oracle Enterprise Data Management Cloud deployed within a customer cloud).

Related Information:

• Configuring Microsoft Entra ID for SSO
• Configuring Multiple Identity Providers for a Domain in Oracle Cloud Console