> ## Documentation Index
> Fetch the complete documentation index at: https://anaconda.com/docs/llms.txt
> Use this file to discover all available pages before exploring further.
# Enterprise Single Sign-On (SSO)
export const GCell = ({children, className}) =>
{children}
;
export const GTH = ({children, className}) =>
{children}
;
export const GRow = ({children}) => {children}
;
export const GBody = ({children}) => {children}
;
export const GHead = ({children}) => {children}
;
export const GTable = ({children, className, cols}) =>
{children}
;
Anaconda provides customers on Business or Custom plans the ability to authenticate with Anaconda products directly from their internal identity platform (IdP), via OpenID or SAML.
To make the setup and provisioning process for your employees even more seamless, Directory Sync (SCIM) is also available for many IdPs. Both SSO and SCIM support the automated provisioning of Anaconda products, but SCIM additionally enables bulk importing of employees from internal directories, management of employee access and permissions, and automated deprovisioning of Anaconda products from your IT infrastructure and HR workflows.
This service is offered to organizations that have five or more licensed organization members.
## Setting up Enterprise SSO
Upon request, a self-service setup link will be emailed to you or to your IT representative. Click either **Configure Single Sign-On** or **Configure Directory Sync**, then follow the prompts for your IdP to set up your Anaconda SSO configuration.
To request a self-service setup link, please contact your dedicated Customer Service Manager (CSM) or [open a support ticket](https://support.anaconda.com/hc/en-us/requests/new).
Provider
SSO Support
Directory Sync Support
ADP
Yes
—
Auth0
Yes
—
CAS
Yes
—
ClassLink
Yes
—
Cloudflare
Yes
—
CyberArk
Yes
Yes
Duo
Yes
—
Entra ID
Yes
Yes
Google Workspace
Yes
Yes
JumpCloud
Yes
Yes
Keycloak
Yes
—
LastPass
Yes
—
Microsoft AD
Yes
—
miniOrange
Yes
—
NetIQ
Yes
—
Okta
Yes
Yes
OneLogin
Yes
Yes
Oracle
Yes
—
PingFederate
Yes
Yes
PingOne
Yes
—
Rippling
Yes
Yes
Salesforce
Yes
—
Shibboleth
Yes
—
SimpleSAMLphp
Yes
—
VMWare
Yes
—
Custom SAML
Yes
—
Custom OIDC
Yes
—
Custom SCIM
—
Yes
Custom SFTP
—
Yes
## Enterprise Managed Users
Enterprise managed users are accounts that your organization owns and governs, rather than the individual user. When you enable Enterprise SSO with SCIM, your organization members become enterprise managed users.
Unlike standard Anaconda accounts where individuals sign up on their own and join organizations through invitations, your IT team provisions and controls enterprise managed users entirely through your identity provider.
### Enterprise managed users vs. standard accounts
Capability
Standard account
Enterprise Managed User
Account creation
Self-service signup
Provisioned via SCIM by IT admin
Authentication
Email/password, social login, or SSO
Organization's IdP (SSO) only
Organization membership
Can belong to multiple organizations
Belongs to a single organization
Deprovisioning
User leaves organization voluntarily, or admin removes them
Automated via SCIM when removed from IdP directory
## Next steps
With SSO enabled, employees with matching domains in their email will be prompted to authenticate via your IdP when signing in to Anaconda. Signing in using SSO for the first time creates their Anaconda account, adds them to your organization with baseline permissions, assigns them a seat, and sends an organization access token to their email.
Instruct your organization members to follow the steps in the email for authenticating to Anaconda by setting their organization access token. For more information about tokens, see [Tokens](/anaconda-platform/cloud/user/tokens).