Configuring single sign-on (SSO) for Talend Cloud - Cloud

Talend Cloud Single Sign-On (SSO) Configuration Guide

Version
Cloud
Language
English
Product
Talend Cloud
Module
Talend Management Console
Content
Administration and Monitoring > Managing users
Last publication date
2024-03-05
You can change the default authentication mode to SSO.

Talend Cloud offers generic login configuration options that allow you to set up SSO with the identity provider of your choice through SAML 2.0. To enable it:

  1. Create an application on the SSO provider side and download a metadata file containing the SAML parameters of the created application. The current documentation explains how to configure SSO with one of Talend Cloud's certified providers: Okta, OneLogin, PingFederate, or Microsoft Azure Active Directory.
  2. Enable SSO from Talend Management Console by specifying the SSO Organization URL as well as the metadata. Refer to Enabling SSO in Talend Management Console for an example.

About Multi-factor Authentication (MFA)

You can use Multi-factor Authentication (MFA) to log in to Talend Cloud by selecting the corresponding option on the external SSO provider. Once MFA is enabled on your SSO provider, Talend Cloud will be compliant with it.

Note:
  • If SSO is enabled, users can only connect Talend Studio to Talend Cloud using a Personal Access Token.
  • Although complete tests were performed only on the certified SSO providers as to using MFA with Talend Cloud, MFA with other SSO providers is expected to work all the same.