Single Sign On (SSO): Accessing Wasabi Console
    • 27 Sep 2024
    • 2 Minutes to read
    • PDF

    Single Sign On (SSO): Accessing Wasabi Console

    • PDF

    Article summary

    Why Use SSO?

    Single Sign-On (SSO) is important because it enhances user experience and productivity by allowing users to access multiple applications and systems with a single set of credentials. This eliminates the need for multiple logins and passwords. Additionally, SSO improves security by reducing the risk of weak passwords and enabling centralized authentication and access control.

    Understanding Wasabi Single Sign On (SSO)

    Wasabi supports two versions of SSO:

    • SSO is an industry-standard implementation that enables all Wasabi customers (trial or paid customers) to set up SSO, at-will, in their own accounts. You simply need to enter standard SSO configuration information and define user roles, as described in Configuring Single Sign On (SSO).
    • SSO Legacy enables you to manage access to multiple Wasabi accounts. Your users will log into a portal (through a provider such as Okta) and access their Wasabi accounts with the credentials you set up. Refer to Configuring SSO Legacy.
      Use of SSO Legacy is discouraged. Wasabi is no longer provisioning new customers on SSO Legacy.

    Accessing Wasabi with each version is described below:

    Currently, users of either SSO version cannot access the BILLING tab. For billing, we encourage you to use sub-users who are provisioned with billing permissions.

    Accessing Wasabi with SSO

    1. On the "Welcome to Wasabi!" page, click the SIGN IN WITH SSO button.

    2. There are two ways to sign in with SSO. If your organization is set up by name, you can sign in with the organization name by clicking the upper blue area. Alternatively, you can sign in with a Root user email address by clicking the lower blue area.

    3. Enter your organization name or Root user email address, as prompted. Click Continue.

    4. You may be redirected to an IDP login page (an example is shown below). Enter your login credentials and click Continue.
    5. Wasabi will verify security and redirect you to the Wasabi Management Console.
    6. If you are a user who is a member of multiple groups, you will be prompted to select a role upon authenticating into the Console. Select a role and then click Continue.

    Accessing Wasabi with SSO Legacy

    If you have an enterprise account with SSO Legacy configured, you will see this login when you access the Wasabi URL: https://auth.wasabisys.com

    You must contact Wasabi Customer Support to enable the SSO Legacy feature.

    1. Enter your organization’s provider ID.

      As an alternative to English, you can click the English button (located below the Sign Up panel) and select the language in which to display the interface.

    2. Click CONTINUE and you will be redirected to the Identity Provider (such as Okta) login panel. Enter your credentials.
    3. If you have been assigned multiple roles on the Identity Provider, select one of the roles from a drop-down list. For example:

      Based on the selection, you will be able to perform actions on the Wasabi console as per the policy associated with your role.

    4. Click CONTINUE.



    What's Next