Using SAML Single SignOn and Google Authorization Service¶
Qubole supports logging into QDS using the username and password or through Google authorization, or through SAML Single Sign-On (SSO). To use Google authorization and SSO for signing into QDS, create a ticket with Qubole Support.
You must provide some information to enable SAML SSO service on the account. See Enabling SAML Single SignOn Authorization Service for more information.
The following figure shows the QDS login page.
Enabling SAML Single SignOn Authorization Service¶
To enable SAML Single SignOn (SSO) authorization service, you must contact Qubole customer support and provide the following details:
- SAML Single SignOn endpoint
- SAML Single SignOn cert
- SAML Single SignOn fingerprint
- Email/domain details of users who would be using SAML login credentials to use Qubole.
User email addresses need to provided only if a specific set of users need SAML enabled. SAML is supported at the domain level too.
Qubole uses SAML version 2.0. Qubole’s entity ID on SAML service providers such as Okta, OneLogin, and LastPass is
qubole. After using the entity ID on the SAML service provider, select api or api2 as the subdomain. After
this, you can figure out the SSO endpoint and the cert/pemfile.