An identity provider (IdP) manages identity information for users and provides authentication services. The identity provider enables single sign-on (SSO) so that you can access other websites, without having to log in repeatedly. In contrast to on-premises technologies, such as Active Directory and LDAP, identity providers also offer a consistent and governed experience when accessing cloud services, eliminating the need to create accounts for each new service.
In Qlik Cloud or in a multi-cloud deployment, an IdP delivers the following:
- Secure authentication of a user and a common identity (user ID and groups) passed between all deployments.
- Common user identity to assign a license to (to avoid double use).
- Common user ID and attributes, such as groups, to use when applying access control to content.
IdP requirements
Qlik Cloud integrates with an IdP using the OpenID Connect (OIDC) or SAML standard. This allows both interactive login, where users log in via a browser, and automated login through APIs via a software product.
Example: IdP in a SaaS deployment
Using an identity provider in a multi-cloud deployment
Qlik Sense Enterprise on Windows integrates with an IdP using the SAML standard or any other method that provides the IdP with a consistent user identity.
Example: IdPs in a multi-cloud deployment
For additional information on how to set up a multi-cloud deployment, see Distributing apps to Qlik Cloud.