MicroStrategy ONE
Authentication Modes
The available authentication modes are:
- Standard: Intelligence server is the authentication authority. This is the default authentication mode. For more information, see
- LDAP (lightweight directory access protocol): An LDAP server is the authentication authority.
- Anonymous: Users log in as "Guest" and do not need to provide a password.
- Single sign-on: Single sign-on encompasses several different third-party authentication methods, including:
- OpenID Connect (OIDC) authentication: A modern authentication protocol built on an authorization protocol called OAuth2. The protocol allows a client application to securely delegate user authentication to an Identity and Access Management (IAM) service. The protocol is designed for the internet and relies on features of the HTTPS protocol. For more information, see Enabling Single Sign-On with OIDC Authentication.
- SAML authentication: A two way authentication set up between your MicroStrategy server and a SAML Identity Provider. For more information, see Enable Single Sign-On with SAML Authentication.
- Integrated authentication: A domain controller using Kerberos authentication is the authentication authority. For more information, see Enabling Integrated Authentication.
- MicroStrategy Identity: Users log into Web and Mobile using MicroStrategy Identity. MicroStrategy Identity enables users to electronically validate their identity using the Badge app on their smartphone, instead of entering a password. For steps, see Enable Badge Authentication for Web and Mobile.
For examples of situations where you might want to implement specific authentication modes, and the steps to do so, see Authentication Examples.