Configuring an authentication provider

Note: To avoid being locked out of your instance, you must connect your npm Enterprise admin account to your SSO account immediately after configuring an authentication provider. If you are locked out of your instance, contact npm Enterprise Support at [email protected].

As an Enterprise admin, you can configure your instance to use single sign-on (SSO) authentication through any external authentication provider that implements OpendID Connect Core and OpendID Connect Discovery, such as Auth0, Azure Active Directory, Okta, and Google.

  1. Log in to your Enterprise instance using your temporary username and password.
  2. In the upper right corner of the page, click your profile picture, then click Site Administration. drop-down with site administration choice
  3. Click “settings”. admin panel settings button
  4. On the Settings page, click “Configure Single Sign-On”. configure single sign on button
  5. On the Single Sign-On configuration page, enter your SSO application settings:
    • Domain: enter the base domain, without the https:// prefix
    • Client ID
    • Client Secret fields for sso settings form
  6. Click Save. sso settings form save button
  7. On your SSO provider application website, enter your npm Enterprise instance callback URL: www.<company-name>
  8. To connect your npm Enterprise admin account to your SSO account, visit https://<company-name>

Removing users from your authentication provider

When you remove a user from your authentication provider, we also recommend deactivating them in your instance.

< Getting started with npm Enterprise | Defining a security policy >