This section describes supported SAML 2.0 specifications and SAML 2.0 Single Sign-On (SSO) setup. It also explains how to integrate Carbon Black EDR with OKTA, Shibboleth, and ADFS IdPs.

Single Sign-On (SSO) allows multiple systems (possibly more than one vendor) to share a user authentication provider.

  • Users can maintain a single set of credentials for a variety of services.
  • Users need not re-authenticate when switching from one system to another since their initial login.
  • Context is remembered after the initial login.

Carbon Black EDR supports the Security Assertion Markup Language (SAML) 2.0 for SSO integration. The following topics provide a summary of supported capabilities and the procedures for configuring and troubleshooting SSO integration with external SAML 2.0-compliant identity providers (IdPs).