Configure Single Sign-On (SSO)

Set up SSO with your identity provider to provide secure, centralized access to Radiant.

COMING SOON!

In this guide, you will configure Single Sign-On (SSO) to allow your users to access Radiant Security through your Identity Provider (IdP). Setting up SSO ensures a secure and streamlined login experience, while centralizing authentication and access management.

Supported Identity Providers

We currently support SSO with the following Identity Providers:

Configure SSO for Okta

Use Okta as your SSO provider to let users access Radiant securely and easily, with centralized identity management and enforcement of your organization’s authentication policies.

Configure Okta as a SAML 2.0 identity provider for Radiant, so your users can authenticate via your company’s Okta portal.

Prerequisites

Admin access to Okta Admin Console

Create SAML application

Log in to the Okta Admin Dashboard, then click Applications.
Click Create App Integration.
Select SAML 2.0 as the sign-in method and click Next.
Name the app (e.g., Radiant) and click Next.
In the SAML Settings section:
- Single sign-on URL: The value is provided by Radiant in the setup.
- SP Entity ID (Audience URI): The value is provided by Radiant in the setup.
- Name ID format: EmailAddress

Assign users or groups

Go to the Assignments tab of the app.
Click Assign > Assign to Groups and select the groups that should have access to Radiant via SSO.

Submit metadata to Radiant

To complete the setup, send us your identity provider metadata.

In the Okta's Sign On tab, scroll to the SAML Signing Certificates section.
Click View SAML setup instructions.
Copy the Identity Provider Metadata URL.

Configure SSO for Google

Use Google as your SSO provider to let users access Radiant securely and easily, with centralized identity management and enforcement of your organization’s authentication policies.

Configure Google as a SAML 2.0 identity provider for Radiant, so your users can authenticate via your company’s Google portal.

Prerequisites

Write access to Google Workspace Admin Console

Create a SAML application

Log in to your Google Workspace dashboard and click Web and mobile apps in the sidebar.
Click Add app and click Add custom SAML app.
Enter the name of your application (e.g., Radiant Security), then click Continue.
Skip to the next screen by clicking Continue.
Copy the ACS URL and Entity ID values from Radiant’s SSO setup and paste these values into Google’s. The Name ID format should be EMAIL.

Assign users or groups

Under Service status, enable ON for everyone for the SAML application you just created.
Click Save.

Submit metadata to Radiant

To complete the implementation of SAML SSO, you need to provide Radiant with your identity provider’s details.

Click Download metadata.
Upload the Metadata file downloaded from the previous step into Radiant.

Configure SSO for Microsoft Entra ID

Use Entra ID as your SSO provider to let users access Radiant securely and easily, with centralized identity management and enforcement of your organization’s authentication policies.

Configure Entra ID as a SAML 2.0 identity provider for Radiant, so your users can authenticate via your company’s Entra ID portal.

Prerequisites

Admin access to Azure Portal

Create SAML application

Go to Azure Portal, open the portal menu and select Enterprise applications.
Click New application.
Click Create your own application.
Provide a name for your app (e.g., Radiant Security), select Integrate any other application you don't find in the gallery (Non-gallery), and click Create.
In the Overview page, select Set up single sign on.
Select SAML.
Click Edit.
Copy the Reply URL and Identifier values from Radiant’s SSO setup and paste these values into Azure's Basic SAML Configuration.