Single Sign-On (SSO) with Okta

Enterprise identity management and SSO integration

Single Sign-On (SSO) allows your organization to manage access to Luma through your existing identity provider like Okta, Google Workspace, Azure AD, or any system that supports SAML 2.0 or OAuth 2.0. Instead of creating separate Luma accounts with different passwords, your team members sign in to Luma using the same credentials they use for other work applications.

Why Organizations Use SSO

SSO gives your IT and security teams centralized control over access. When someone joins your organization, they automatically get access to Luma along with other tools. When someone leaves, revoking their account in Okta immediately removes their Luma access.

You can leverage your existing security policies including multi-factor authentication (MFA), password requirements, and access controls. All authentication events are logged centrally for compliance and audit purposes, giving your security team visibility into who is accessing what.

How It Works

When SSO is configured, the sign-in experience is seamless. Employees visit Luma and choose to sign in with your organization's identity provider. They're redirected to your familiar sign-in page (like Okta), authenticate there, and are immediately signed into Luma. If they're already signed into other work applications, the process is often instantaneous.

Your IT team configures Luma as an application in your identity provider once, maps the appropriate user attributes, and then all access control happens through your existing system. When your security policies change—like requiring stronger authentication or limiting access hours—those policies automatically apply to Luma access.

Getting Started

SSO is available exclusively on Luma Enterprise plans. Setting up SSO requires coordination between your IT team and our enterprise team to ensure proper configuration and security.

If your organization is interested in SSO, contact us at [email protected] to learn more about Enterprise plans and begin the setup process. Our team will work with you to configure SSO with your specific identity provider and ensure it meets your security requirements.