This topic describes how to:
- Activate single sign-on (SSO)
- Frequently asked questions on SSO
Optimizely Experimentation lets you implement Single Sign-On (SSO) through SAML 2.0, an open standard data format for exchanging authentication and authorization information. This allows your team to log in to Optimizely Experimentation using their existing corporate credentials. SSO is an account-level feature that will apply across all projects and experiments.
Optimizely Experimentation SSO is available for any SSO provider that supports the SAML 2.0 protocol. For example Okta, Google Workspace and Azure AD.
To activate SSO, contact support and lets us know you want to enable SSO and what SSO provider you are interested in implementing. This will start the setup process.
Once SSO is enabled, all users will have to log in via SSO. The ability to log in with an email and password will be disabled.
Accessing SSO settings
In Optimizely Experimentation, navigate to Account Settings > Security and Privacy.
If you do not have Single Sign-on enabled you will see instructions on how to enable SSO:
If SSO is enabled for your account, you will see a checkbox to enable single sign-on:
If you already have enabled SSO in Optimizely Experimentation, follow these steps to sign in to your Optimizely Experimentation account:
- From the sign-in page, click Log in using SSO.
- You will be redirected to the SSO page, where you will enter an Optimizely Experimentation-recognized email address, which is authenticated by your Identity Provider.
- If your email is recognized as a user with an SSO who has permissions on any account, you will be challenged for your credentials by your Identity Provider. This step is skipped if you already have a session open.
Additional SSO identity providers
Accounts can also have up to 2 additional Identity Providers tied to an account. Contact support if you would like to add additional SSO identity providers.