Configure OAuth authentication for your Sigma organization

This document guides you through configuring Sigma to authenticate your organization member accounts through OAuth single sign-on (SSO).

Prerequisite

Requirements

  • You must be assigned the Admin account type to manage authentication for your Sigma organization.

Configure OAuth as the authentication method for your Sigma organization

In Sigma, configure your organization to use OAuth as the authentication method.

💡

When transitioning authentication methods for your Sigma organization from basic authentication to OAuth, the best practice is to transition first to the OAuth or password option rather than directly to requiring OAuth only login for all users. With the authentication method set to OAuth or password, you retain the ability to log in with a password during the transition to your IdP based login, ensuring that you are not locked out during the configuration change. Once you have confirmed that users are able to log in using OAuth, you can transition to OAuth only login.

This configuration requires the values for three fields you obtained when configuring your Sigma OAuth application in your IdP.

  1. Go to Administration > Authentication.
  2. In the Authentication Method and Options section, locate the Authentication Method setting and click Edit.
  3. In the Authentication Method & Options page, configure OAuth authentication:
    1. In the Authentication Method dropdown, select the OAuth or password option.
    2. To enable guest users to access permitted content, turn on the Allow Guest Access switch. Guest users must have user accounts in your data platform and be added as OAuth users in your IdP in order to access Sigma.
    3. In the Metadata URI field, enter the OAuth metadata URI.
    4. In the Client ID field, enter the client ID from your OAuth application.
    5. In the Client Secret field, enter the client secret from your OAuth application.
      After you enter and save this value, Sigma does not display it.
    6. Click Save to apply the changes.
  4. Test your OAuth configuration by logging out and logging back into Sigma. Your organization’s login page should now display a "Log in with SSO" prompt.
  5. After testing to ensure users are able to log in using OAuth, you can update your selection in the Authentication Method dropdown to choose the OAuth option, which enforces OAuth login for all users.