Enter the URL to the
Audience, the
Recipient, the
ACS (Consumer) URL
Validator, and the
ACS (Consumer) URL fields,
depending on where your
Talend Cloud
account is hosted. This URL should read like
https://iam.<env>.cloud.talend.com/oidc/ssologin, where <env> is the name
of your Cloud region, for example:
For further information about the available regions, see the Single sign-on
configuration URL row of each region at
Talend Cloud regions and URLs.
It
is recommended to keep the RelayState field empty, because
this field indicates the destination to which your connection is redirected when
the login flow is successfully done.
When setting up SSO for multiple accounts (multiple tenants) on
Talend Management Console, use their account IDs to define the unique entity ID of each account. For example, the
entity ID for the AWS US region becomes
https://iam.us.cloud.talend.com/oidc/ssologin/<your_account_ID>. Remember to perform the
SSO setup individually for each tenant using their respective account IDs. This federates
these tenants into a single SSO authentication system.
Information noteNote: The account
federation mentioned is exclusive to SSO authentication. The Talend Management Console
objects, such as environments and workspaces, remain specific to each tenant and cannot
be shared across tenancies.
You
can find the account ID on the Subscription
page of your Talend Management Console.