SAML

Security Assertion Markup Language (SAML) is an XML-based framework developed by the Organization for the Advancement of Structured Information Standards. It is used to exchange secure data between different services, such as authentication and authorization information.

About Bitsight SAML

We support single sign-on (SSO) with SAML v2.0 using the POST binding. See the supported identity providers (IdP).

Once SAML is enabled:

• Previous login credentials (including Admin) are invalidated after the first successful login.
• New users can be auto-provisioned with the “Auto provision users” toggle in the SAML page. With this setting:
  • Enabled = New users are provisioned in the Bitsight platform when they first log in via SSO. They are automatically assigned a User role and are placed in the default Access Control Group.

    The default is initially the “All Companies” group. The All Companies group provides access to your entire portfolio.

  • Disabled = Admin will need to manually add or edit users.

    If you’re configuring multiple providers, the “Auto provision users” option must be disabled.

Use the Access Control page to manage users and groups:

• The default group can be configured from the Groups tab.
• A user’s group can be changed from the Users tab.
• To give a user “Admin” privileges, that user will need to first log in to the Bitsight platform using SAML, and then you (an Admin) can change their user permissions from the Users tab.

SAML Guides

• Configuring 2-Factor Authentication
• Disabling SAML
• Replacing and Updating Your SAML Certificate
• Single Sign-On Setup Using SAML
• Setting a Custom Login URL (Optional)