cancel
Showing results for 
Search instead for 
Did you mean: 
Administration & Architecture
Explore discussions on Databricks administration, deployment strategies, and architectural best practices. Connect with administrators and architects to optimize your Databricks environment for performance, scalability, and security.
cancel
Showing results for 
Search instead for 
Did you mean: 

OIDC account-level SSO and SAML workspace-level SSO

hattier
New Contributor II

Hey folks! I am seeking clarity for this passage in documentation: 

"This means that SSO for your account and SSO for each workspace must be managed separately. You should configure SSO to the the same identity provider at the account and on your workspaces." 

Does that mean we should use the same SSO protocol for both? Our account does not have Unified Login enabled yet, but we anticipate using it as soon as it is available. Therefore, we have OIDC at the account level. But SAML is the only SSO available for the workspace level. Will it cause any issues now or in the future to have two different protocols in place? Both pointing, of course, to the same IdP (Okta).

1 ACCEPTED SOLUTION

Accepted Solutions

Prabakar
Esteemed Contributor III
Esteemed Contributor III

If both are pointing to the same IDP then it should not be a problem.

View solution in original post

1 REPLY 1

Prabakar
Esteemed Contributor III
Esteemed Contributor III

If both are pointing to the same IDP then it should not be a problem.