Skip to main content

Documentation Index

Fetch the complete documentation index at: https://docs.chamelio.ai/llms.txt

Use this file to discover all available pages before exploring further.

Chamelio supports Single Sign-On (SSO) via Auth0. SSO lets your organization authenticate users through your existing identity provider (IdP), so employees sign in using corporate credentials.

What SSO Enables

  • Users sign in using your company’s identity provider
  • Password management and MFA are handled by your IdP
  • User access is centrally managed by your IT or security team
  • Faster and more secure login experience

Supported Identity Providers

Chamelio supports any identity provider compatible with SAML 2.0 or OpenID Connect (OIDC), including:
  • Okta
  • Azure Active Directory (Entra ID)
  • Google Workspace
  • OneLogin
  • Ping Identity
Contact support@chamelio.ai to confirm compatibility for other providers.

Authentication Protocols

  • SAML 2.0
  • OpenID Connect (OIDC)

User Provisioning and Access

SSO controls authentication only. Authorization within Chamelio is managed separately — roles and permissions are configured within Chamelio regardless of how users authenticate. Users must exist in Chamelio (or be allowed via auto-provisioning) to access the platform after SSO authentication.

Setup Process

SSO is configured through a self-serve flow initiated by the Chamelio team:
1

Request an SSO setup link

Email support@chamelio.ai to request SSO setup. Chamelio generates and shares a secure configuration link.
2

Configure your identity provider

Your IT team uses the provided instructions to configure your IdP. For SAML, metadata or certificates are exchanged. For OIDC, client details are verified.
3

Test with a pilot user

Complete a login test with a pilot user before rolling out to the full team.
4

Enable SSO for your workspace

Once testing passes, SSO is enabled organization-wide.

Common Questions

Yes. Password-based login can be disabled once SSO is enforced, so all users must authenticate through your IdP.
Yes. MFA is enforced through your identity provider, not Chamelio directly.
This depends on your configuration. Password-based login can be disabled once SSO is fully rolled out.
SCIM support depends on your plan and configuration. Contact support@chamelio.ai to discuss automated provisioning and deprovisioning.

Getting Started

To configure SSO, email support@chamelio.ai. Chamelio will generate a secure self-serve setup link for your IT or security team.