# Single Sign-On (SSO) Setup
## Overview
Managing access across teams can be complex. With Single Sign-On (SSO), you can **simplify authentication** by using your organization’s existing identity provider. This means your users can access OneLens with the same credentials they already use across your systems—securely and seamlessly.
{% hint style="warning" %}
## IMPORTANT
Only users with **Admin access** can view and modify the SSO setup.\
If you don’t see the **SSO option**, check if you have the required permissions.
{% endhint %}
Here is the guide on how you can setup Single Sign-On (SSO) in OneLens:
## Set Up Single Sign-On
{% stepper %}
{% step %}
**Go to SSO Settings**
To get started:
* Head to the **Settings** section from the left-hand sidebar in OneLens.
* Scroll down, from the **Security** section and select **SSO (Single Sign-On)**.
{% endstep %}
{% step %}
**Enable SSO**
You’ll see a toggle to enable SSO. Turn it on to show the configure options.
{% hint style="danger" %}
## NOTE
* You can enable or disable SSO at any time.
* If you disable it, all SSO configurations will be **permanently deleted**.
* If you want to use SSO again later, you’ll need to reconfigure everything from scratch.
{% endhint %}
{% endstep %}
{% step %}
**Go for Configuration**
Once enabled, a **Configure** button appears just below the toggle. Click it to proceed with setup.
{% endstep %}
{% step %}
**Choose Your Identity Provider**
OneLens supports the following providers:
* Google
* Okta
* Entra ID (formerly Azure AD)
* OneLogin
* JumpCloud
* Duo
* Rippling
* **Other** – use this if you're setting up a different SAML-compatible provider.
Pick the one your organization uses. Once selected, you’ll **get clear step-by-step instructions** tailored to that provider. Follow these instructions to complete the **SAML connection** required for SSO setup.
{% endstep %}
{% step %}
**Enter SAML Details**
At the end of the setup, you’ll be asked to enter details such as:
* SSO URL
* Entity ID
* Certificate
* or other value based on your chosen identity provider.
Once the information is filled in, click on the **Finish**.
{% endstep %}
{% step %}
**Test and Activate Connection**
On the **Test Connection** page:
* You can verify if the connection between your identity provider and OneLens is working correctly.
* If the test is successful, click **Finish & Go Live** to activate SSO.
{% hint style="info" %}
In case test fails, you can choose to **Remove Connection**.\
This clears the setup, and you’ll need to start the configuration process from scratch.
{% endhint %}
{% endstep %}
{% endstepper %}
Once that’s done, your SSO integration is live. Your team can now log in to OneLens using your identity provider—no separate credentials required.
## Next Steps
**Before users can log in** through SSO, make sure you've [added them to OneLens](/getting-started/onboarding-users-to-onelens.md). Users must exist in the system for their SSO credentials to work correctly.
---
# Agent Instructions: Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.
Perform an HTTP GET request on the current page URL with the `ask` query parameter:
```
GET https://docs.onelens.cloud/getting-started/single-sign-on-sso-setup.md?ask=
```
The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.
Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.