bitwarden/help
1
0
Fork 0
mirror of https://github.com/bitwarden/help synced 2025-12-06 00:03:30 +00:00
Code Issues Releases Wiki Activity
Files
2cd0c831f0fe51cd143c97375b26b76d45366559
help/_articles/login-with-sso/getting-started-with-sso.md
fred_the_tech_writer 2cd0c831f0 Plans and pricing rev (#247) 
* Creation of "Plans & Pricing" category (outside of Account Management),  and initial commit of revisions. 

Include a few downstream edits to Login with SSO.

* Updated descision tree graphic for article/what-plan/is-right-for-me

* Copyedits

* Copyedits 2

* Copyedits 3

* Fixes to comparisons tables.

* Final copyedit.
2020-10-28 08:37:41 -04:00

3.7 KiB
Raw Blame History

layout, title, categories, featured, popular, tags, order
layout title categories featured popular tags order
article Getting Started with Login with SSO
login-with-sso
true true
saml
saml2.0
single sign-on
sso
oidc
openid
openid connect
idp
identity provider
01

What is Login with SSO?

Login with SSO separates user authentication from Vault decryption by leveraging your existing Identity Provider (IdP) to authenticate users into their Bitwarden Vault and using Master Passwords for decryption of Vault data.

Login with SSO currently supports SAML 2.0 and OpenID Connect authentication for customers on the current Enterprise Plan.

Users of Bitwarden authenticate into their vaults using the Enterprise Single Sign-On button located on the login screen of any Bitwarden client application. For more information, see Access Your Vault Using SSO.

Administrators can configure Login with SSO in the Business Portal. For more information, see About the Business Portal.

{% image /sso/sso-button-lg.png Enterprise Single Sign-On button%}

In This Article

Enterprise Free Trial

Login with SSO is available for all customers on the current Enterprise plan (for more information, see here). Customers are encouraged to participate in a 7 Day Free Trial of the current Enterprise Plan in order to test Login with SSO. For more information, see:

If you are self-hosting Bitwarden, you will need to generate a new license file after starting your 7 Day Free Trial. We recommend using a separate Bitwarden instance for testing Login with SSO. For more information, see Licensing Paid Features.

Requirements

Login with SSO has the following requirements:

Identity Server Requirements

Your Identity Provider must support one of the following:

  • SAML 2.0
  • OpenID Connect (OIDC)

Client Application Requirements

Your Bitwarden client applications require the following versions:

  • Desktop Application: v1.2+
  • Browser Extension: v1.46+
  • Mobile App (Android or iOS): v2.6+
  • CLI: v1.12+ (Must run on systems with an available web browser)

Self-Hosting Requirements

If you are self-hosting Bitwarden, your installation must be on v1.37+.

For information on updating your self-hosted instance, see Updating your Self-Hosted Installation.

Workflow Diagram

The following diagram is an overview of the workflow used by Bitwarden to authenticate using SSO:

{%image /sso/sso-workflow.png Bitwarden SSO Workflow %}

Next Steps

For administrators configuring Login with SSO, see:

For existing users, see:

For more information, see: