# Single Sign-On (SSO)

Lumi AI supports "single sign-on", allowing your organization to federate authentication for access to the platform. This avoids separate credentials and allows restricted access to your organization's workspace on the platform through a separate login portal.

## Support Platforms

Lumi AI SSO integration works for the following:

* Google Workspace
* OKTA
* Azure Entra ID
* Microsoft AD FS

Others may be available on request.

## Enabling SSO

Single Sign-On is configurable for Enterprise tier only, and requires contacting our support or sales staff to enable. Provisioning is offered with SAML 2.0.

Required:

* An Enterprise license with Lumi AI
* A supported IdP (see above)
* IdP management access (typically via your IT team support)

To begin enablement, please contact <support@lumi-ai.com> or <sales@lumi-ai.com> to coordinate scheduling a meeting with your IT team.

Once enabled, the account will only be accessible through a dedicated login portal (a custom subdomain for your organization under Lumi AI).

## Limitations

SSO still requires user management within Lumi AI (i.e., users are invited and kicked from the platform itself, and sign-in through an SSO portal if it has been enabled for the organization).

There is no SCIM integration for role or other detailed access rights passthrough.