You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: docs/source/guide/auth_setup.md
+30-2Lines changed: 30 additions & 2 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -27,7 +27,8 @@ The organization Owner or Administrator for Label Studio Enterprise can set up S
27
27
-[Google SAML](google_saml.html)
28
28
-[Ping Federate and Ping Identity SAML SSO Setup Example](pingone.html)
29
29
- OneLogin
30
-
- Microsoft Active Directory
30
+
- Microsoft Entra ID (formerly Azure Active Directory, Azure AD)
31
+
- Auth0
31
32
- Others that use SAML assertions
32
33
33
34
After setting up the SSO, you can use native authentication to access the Label Studio UI, however it's not a recommended option especially for the user with the Owner role.
@@ -63,13 +64,40 @@ The details will vary depending on your IdP, but in general you will complete th
63
64
2. Generate a metadata XML file, or a URL that specifies the metadata for the IdP.
64
65
3. Set up or confirm setup of the following SAML attributes. Label Studio Enterprise expects specific attribute mappings for user identities.
65
66
66
-
| Data | Required Attribute |
67
+
**The default attribute names are:**
68
+
69
+
| Data | Default Attribute |
67
70
| --- | --- |
68
71
| Email address | Email |
69
72
| First or given name | FirstName |
70
73
| Last or family name | LastName |
71
74
| Group name | Groups |
72
75
76
+
!!! note Note
77
+
Different Identity Providers use different attribute names. Label Studio provides **presets** in the SSO & SAML settings page to quickly configure the correct attribute mappings for popular IdPs. You can also manually configure custom attribute names if your IdP uses different values.
0 commit comments