LogoLogo
Tabnine websiteContact Sales
  • ๐Ÿ‘‹Welcome
    • Overview
      • Architecture
        • Deployment options
      • Security
      • Privacy
      • Protection
        • Provenance and Attribution
      • Personalization
        • Tabnineโ€™s Personalization in Depth
        • Connection: Global Codebase Awareness
      • AI Models
        • Tabnine's private and protected Universal models
        • Tabnine's fine-tuned AI models
      • Integrations
        • Atlassian Jira
      • System Requirements
      • Supported Languages
      • Supported IDEs
      • Tabnine Subscription Plans
        • Dev Preview
        • Dev
        • Enterprise (SaaS)
        • Enterprise (private installation)
    • Support & Feedback
  • ๐Ÿš€Getting started
    • Install
      • Client setup (SaaS)
        • VS Code
          • Install Tabnine in VS Code
          • Activate Tabnine in VS Code
        • JetBrains IDEs
          • Install Tabnine in a JetBrains IDE
          • Activate Tabnine in a JetBrains IDE
        • Visual Studio
          • Install Tabnine in Visual Studio 2022
          • Activate Tabnine in Visual Studio 2022
        • Eclipse
          • Install Tabnine in Eclipse
          • Activate Tabnine in Eclipse
        • Sign in
          • Using an email
          • Using an authentication token
      • Client setup (private installation)
        • Join your team (private installation)
        • VS Code (private installation)
        • JetBrains IDEs (private installation)
        • Visual Studio (private installation)
        • Eclipse (private installation)
    • Quickstart Guide
      • Menus and Icons
    • Getting the Most from Tabnine Code Completions
      • Pause (snooze)
    • Getting the Most from Inline Actions
    • Getting the Most from Tabnine Chat
      • Launching Tabnine Chat
      • Interacting with Tabnine Chat
      • Reviewing suggestions
      • Writing prompts
      • Chat Context
        • Understanding Context
        • Jira Connection
        • Context Scoping
      • Conversing with Tabnine Chat
      • Switching between chat AI models
      • Image Prompts
      • Tabnine's Prompting Guide
        • Getting Started
        • Basic Prompting
          • Be specific and clear
          • Define the context
          • Start a fresh conversation as appropriate
          • Include necessary details
          • Ask for examples
          • Be concise but complete
  • ๐Ÿ’ชSoftware Development with Tabnine
    • Overview
    • Plan
    • Create
    • Test
      • Intro to the Test Agent
      • Test Agent Workflow
      • Custom Commands
      • Generate Test Files with @Mentions
    • Review
    • Fix
    • Document
    • Explain
    • Maintain
  • ๐ŸญAdministering Tabnine
    • Start a team
    • Manage a team
    • SaaS
      • Enterprise (SaaS) team admin
        • Set up a Tabnine Enterprise (SaaS) account
        • Invite team members
        • Manage your team
        • AI models for Chat (Enterprise SaaS)
      • Enterprise (SaaS) team member
        • Join your Tabnine team by invitation email (team member)
        • Join Tabnine team by link (member)
    • Private installation
      • Server setup guide
        • Kubernetes (MicroK8s) Installation guide
        • Deployment guide
          • Tabnine update guide
        • Air-gapped deployment guide
      • Admin guide
        • Monitoring Tabnine
        • Prometheus Operator install
        • Audit logs
      • Managing your team
        • Tabnine teams
        • Roles in an enterprise
        • Inviting users to your team
        • Deactivating and reactivating users
        • Deleting PII data of a deactivated user
        • Reset user's password
        • Usage reports
          • Reports Glossary
          • CSV-based reports (V2)
            • Configuring scheduled CSV reports
            • CSV-based reports V1 (Depracted since version 5.7.0
          • Usage API
        • Settings
          • General
          • Single Sign-On (SSO)
          • Personalization (f.k.a. Workspace)
            • Connecting to External Code Repositories
          • Email
          • License
          • Models
          • Access Tokens
        • IdP Sync
      • Release Notes
  • ๐Ÿ“ฃProduct Updates
    • What's new?
      • What's new? (August 2024)
      • What's new? (July 2024)
      • What's new? (June 2024)
      • What's new? (May 2024)
      • What's new? (April 2024)
      • What's new? (March 2024)
      • What's new? (February 2024)
      • What's new? (January 2024)
Powered by GitBook
On this page
  • Configuring Single Sign-On (SSO)
  • Use Azure as a SAML IdP
  • Use Okta as a SAML IdP

Was this helpful?

  1. Administering Tabnine
  2. Private installation
  3. Managing your team
  4. Settings

Single Sign-On (SSO)

Last updated 6 days ago

Was this helpful?

Configuring Single Sign-On (SSO)

Tabnine provides full SAML 2.0 support so you can integrate with your chosen IdP and manage your Tabnine usersโ€™ SSO login in a centralized way. Here you can find the walkthrough process for integrating with the common IdPs in the market.

Setting SSO

  • Sign in to the Tabnine console as an admin.

  • Go to the General page under Settings.

  • In the Single Sign-on section, enable the toggle button.

"Identifier format" (optional) refers to a name identifier format of the request of your IdP.

"AuthnContext" (optional) specifies the authentication mechanism that the IdP should use and the level of assurance for the user's identity.

  1. After logging into Azure, go to the Azure Active Directory tab.

  2. Select Enterprise applications service.

  3. Choose New application.

  4. Choose Create your own application.

  5. Choose Non-gallery application. (Integrate any other application you don't find in the gallery.)

  6. Name it (for example, "TabnineSSO") and click Add.

  7. Choose Setup single sign-on.

  8. Select SAML-based Sign-on as the SSO mode.

  9. Next, add the Tabnine service provider details to the configuration in Azure. Set the following values in Identifier (Entity ID) and Reply URL (Assertion Consumer Service URL), replacing tabnine.customer.com with your Tabnine cluster domain:

  10. Choose user.mail as the value for Unique User Identifier:

  11. In Section 3 - SAML Certificates, choose Download certificate (Base64).

  12. In Section 4, copy Login URL value to use in the next step.

  13. Finally, make sure the following are checked at the bottom: โ˜‘ wantsAssertionSigned and โ˜‘ disableRequestedAuthnContext

  1. Enter your Okta admin panel in Applications > Create App Integration > SAML2 integration.

  2. Set an App name (e.g., "Tabnine"):

  3. Next, set the following values: Single sign-on URL: https://tabnine.customer.com/auth/sign-in/sso/saml/callback Audience URI (SP Entity ID): https://tabnine.customer.com/auth/sign-in/sso/saml Name ID format: EmailAddress NOTE: Replace tabnine.customer.com with your Tabnine cluster domain.

  1. Choose ๐Ÿ”ต I'm an Okta customer adding an internal app.

  1. In the created App in Okta ("Tabnine"), Sign on tab, copy Sign on URL value and Signing Certificate values.

Copy the SAML Callback URL. Fill in the certificate, entry point, identifier format, and AuthnContext from or . Click Save.

Use Azure as a SAML IdP

Enter .

Use Okta as a SAML IdP

๐Ÿญ
https://portal.azure.com/
Azure
Okta
Be sure to have checked off โ˜‘ wantsAssertionSigned and โ˜‘ disableRequestedAuthnContext for Azure configurations