SAML Integration with Kubit
By integrating SAML SSO with Kubit’s Self-Service Analytics with either Google G-Suite or Okta, you can have fine control on which users in your organization can sign in to Kubit using their existing credential. This Single Sign On approach eliminates yet another set of username/password to be remembered, simplify user management, and also can improve security through your existing Multi-Factor Authentication.
With SAML integration, once a user is created on your end (optionally included in a Security Group which has access to Kubit), that user can login to Kubit immediately. The user profile information will also be automatically updated at every login time.
When a user is deleted/deactivated on your end, they will lose access to Kubit immediately too. There is no offline communication required.
SAML configuration is a complicated process. It is recommended to have a live session to work with Kubit support to setup and test the integration together.
Kubit will provide the exact configuration information required on your side. Below is just an example:
Once configured on your side, please provide the following information to Kubit support through a secure channel (eg Slack). For Okta, a metadata file (sample URL https://*****.okta.com/app/*******/sso/saml/metadata) should include them all.
Once configured properly on both sides, please work with Kubit support to test the integration.
Due to security concerns, Kubit doesn't support Idp-Initiated SSO. User has to go to Kubit website first to initiate the login (SP-Initiated).