Orbit MissionControl |
Orbit Hub |
Orbit Connect |
Orbit Cockpit |
✅ |
🚫 |
🚫 |
🚫 |
Overview
Orbit offers Single Sign-On (SSO) capabilities for operator users, enhancing security and streamlining access management. This feature allows organizations to integrate their existing identity providers with Orbit, providing a seamless authentication experience for their users.
Key Features
- Support for multiple identity providers
- Integration with Azure Active Directory (Entra ID)
- Customizable user attributes and role mapping
- Automatic user creation upon first SSO login
How It Works
Orbit's SSO implementation is based on Amazon Cognito and supports SAML 2.0 protocol. When a user attempts to log in:
- They are presented with an option for Single Sign-On on the login page
- The user enters their email address
- Orbit determines the appropriate identity provider based on the email domain
- The user is redirected to their organization's SSO login page
- Upon successful authentication, the user is granted access to Orbit
Setting Up SSO
To enable SSO for your organization, you'll need to provide Orbit with the following information:
- App Federation Metadata URL from your identity provider
- Claim mappings for user attributes (e.g., firstname, lastname, email)
- Default user role and team for new users