For AI agents: a documentation index is available at the root level at /llms.txt and /llms-full.txt. Append /llms.txt to any URL for a page-level index, or .md for the markdown version of any page.
Trust CenterStatusSupportGet a demoPlatform
DocumentationEvals API ReferenceIntegrations & OTELPlatform SettingsSelf-HostingChangelog
DocumentationEvals API ReferenceIntegrations & OTELPlatform SettingsSelf-HostingChangelog
    • Platform Settings
    • Data Residency
    • RBAC
  • Project Settings
    • API Keys
    • Team Members
    • Roles & Permissions
    • Transformers
    • Integrations
    • Alerts
    • AI Connections
    • Model Costs
    • Data Usage
    • Evaluation Models
    • Evaluation Rules
    • Annotation Options
    • Classifiers
    • Data Sources
    • Data Retention
    • Audit Logs
  • Organization Settings
    • Projects
    • Users
    • Roles & Permissions
    • Model Credentials
    • SSO
    • Data Retention
    • Audit Logs
    • Feature Access
LogoLogo
Trust CenterStatusSupportGet a demoPlatform
On this page
  • Setting Up SAML SSO
  • Revoking SSO
Organization Settings

Single-Sign-On (SSO)

Configure SSO for secure and streamlined authentication across your organization.
Was this page helpful?
Previous

Data Retention

Configure organization-wide data retention policies that apply across all projects.

Next
Built with

SSO lets your team sign in to Confident AI using their existing company accounts. Currently, self-serve SSO setup supports SAML only.

If you need a different protocol, reach out to support@confident-ai.com.

Setting Up SAML SSO

Head to Organization Settings → Settings → SSO tab to get started.

1

Select Protocol

Choose SAML from the dropdown.
2

Enter Domain

Enter your company’s email domain (e.g., yourcompany.com). SSO will apply to users with email addresses on this domain—subdomains aren’t included.

3

Configure your Identity Provider

Set up Confident AI as an application in your IdP (Okta, Azure AD, Google Workspace, etc.). Copy these values into your IdP:

  • Assertion Consumer Service (ACS) URL
  • Entity ID
  • Name ID Format (Email Address)
4

Provide your IdP metadata

After setting up the application in your IdP, it’ll give you metadata to enter here:

  • Single Sign-On URL
  • Issuer/Entity ID
  • Certificate
5

Verify Domain and Activate SSO

Add the provided TXT record to your DNS settings to verify you own the domain. Once verified, SSO goes live.

After SSO is activated, users with matching email domains will be able to sign in through your identity provider.

There’s a known bug where domain verification can fail during self-served SSO. If you run into problems during setup, reach out to support@confident-ai.com.

Revoking SSO

If you need to disable SSO, head to Organization Settings → Settings → SSO tab and click Revoke SSO. Users will go back to signing in with their email and password. Note that this setup cannot be undone.