# SSO Currently Dashworks supports Google SSO, Microsoft Azure SSO, and Okta SSO. If you would like to request additional providers, please reach out to . {% tabs %} {% tab title="Okta" %} ### The first steps should be taken within the Okta Admin Panel: 1. Go to **Applications** under **Applications**
2. On the Applications page, select **Browse App Catalog**
3. Search for **Dashworks** App and add it
4. Add an Application label and click **Done**
5. User must specify the Initiate Login URI in the sign-on settings. In most cases this will be [https://apigw.dashworks.ai/v1/google/auth-url?origin=web.dashworks.ai](https://api.dashworks.ai/v1/google/auth-url?origin=web.dashworks.ai). For on-prem deployment, please contact [**support@dashworks.ai**](mailto:support@dashworks.ai) for the Initiate Login URI.
6. Once the App is added, you will have to assign users to the app under the **Assignments** tab. This will enable to users to log into Dashworks app using Okta. To add users, navigate to the **Assign to People** option under **Assign** option on **Assignments** Page. If you already have a group you can choose the **Assign to Groups** option and assign the entire group.
7. You can add people by clicking the **Assign** option next to their name. After you have all the people click the **Done** button
Note: Make sure all the user profiles have these fields populated: * **Username** * **First Name,** * **Last Name** * **Primary Email** * **Display Name.** These fields are required to create profiles in Dashworks. Below is a sample user profile with all required attributes.
### **Now you're ready to open the Dashworks App:** 1. Log into Dashworks and navigate to Settings -> Security under Workspace settings. Click on **Configure** next to OIDC.
2. You will require **Client ID, Client Secret, and Issuer URL**
**Issuer URL** will be of the format for example [*https://dashworks.okta.com*](https://dashworks.okta.com). You can get this from the Okta browser tab.
Also if URL has **-admin** suffix for example , just remove the suffix and only use (**https\://** is required). 3. Fill in the Client ID, Client Secret, and Issuer URL and click **Submit**
4. On successfully applying the changes, you should see the following message:
{% endtab %} {% tab title="Azure AD" %} ### The first steps should be taken within the Azure Portal. 1. Go to *Azure portal* > *Azure Active Directory* 2. In your Active Directory, click **+Add** option and then click App registration
3. In the app registration form, give a unique name to your application and keep the default option for Supported account types. For Redirect URI, please set Redirect type as **WEB** and value as
4. Click on Register and the application will be created. Save the Client ID and Tenant ID (highlighted below) for the newly created app, **this will be required in the SSO creation process on Dashworks app**
5. On the left window, select Certificates and Secrets to create a client secret
6. Click on **+New Client Secret and** fill in the relevant details in the client secret form.
Recommended expires value is 24 months, to avoid creating the SSO registration again for 24 months. Add the secret key after filling in the details in the form.
7. Copy the **Value** of the newly created secret key, **this will be required in the SSO creation process on Dashworks app** ### **Now you're ready to open the Dashworks App:** 1. Navigate to Settings --> Security in the navigation bar.
2. Input the information below and configure the SSO 3. **Client Id**: Noted in Step 4 above 4. **Client Secret:** Noted in Step 7 above 5. **Issuer Url:** [**https://login.microsoftonline.com/**](https://login.microsoftonline.com/)**\/v2.0,** replace \ with your org tenant id noted in Step 4 above. 6. Sign out of Dashworks, then click "Sign in with SSO" to sign in with Azure AD. {% endtab %} {% tab title="Google" %} Google SSO does not require additional setup. You can simply select Google as your SSO provider in the “Single sign-on” page within Dashworks. If you have a Google Workspace you will be prompted with Google SSO both when you first create an account:
You will also be prompted to use SSO if you are logging back in after logging out:
{% endtab %} {% endtabs %}