Authentication and Authorization (SaaS)

Sysdig supports authenticating users using Security Assertion Markup Language (SAML), Google OAuth, and OpenID Connect protocols and certifies different Identity Providers (IdPs) that use these protocols, including but not limited to, Okta, OneLogin, and Azure Active Directory.

You can use Sysdig Monitor and Sysdig Secure with the following user authentication and authorization methods:

TypeEnabled by DefaultIntegration Requirements
User CredentialsYesNo
Google OAuthNoYes
SAMLNoYes
OpenID ConnectNoYes

Prerequisites and Guidelines

Sysdig

  • See SaaS Regions and IP Ranges before proceeding to configure authentication.
  • Sysdig has assigned a Customer Name for your account. You can view it on the Settings > Authentication (SSO) page.

IdP

  • Configure authentication separately for each Sysdig product: Sysdig Monitor and Sysdig Secure.
  • Configure your Identify Provider (IdP) for the Sysdig application.
  • Users are assigned to the application in the IdP.

Enable Single Sign-On

  1. Determine the Single Sign-On (SSO) and the IdP that your enterprise uses.

  2. Log in to the Sysdig application as an administrator.

  3. Open Settings > Authentication (SSO).

  4. On the Authentication screen, select the SSO option from the Enable Single Sign On drop-down. Note that only the configured options are listed.

  5. Enter the required connection settings for the chosen SSO.

  6. Configure any associated IdP settings on the IdP side.

  7. If enabling both Sysdig Monitor and Sysdig Secure, repeat the process on the second application.

Main Authentication Settings

The main Authentication settings are the same for all of the authentication protocols.

OptionDescription
Enable Single Sign OnSingle Sign-On protocol to use. Note that only configured authentication protocols are listed.
Customer IDUnique customer identifier.
Customer NameUnique customer name.
External IDUnique customer External ID used in SSO integrations.

Learn More