> ## Documentation Index
> Fetch the complete documentation index at: https://support.locker.io/llms.txt
> Use this file to discover all available pages before exploring further.

# Configure Single Sign-On Authentication

> Learn how to configure Single Sign-On (SSO) on the Locker Self-hosted system.

This guide covers how to configure **Single Sign-On (SSO)** for the Locker Self-hosted system, allowing users to log in with their enterprise account through an Identity Provider.

## Requirements

* A **Super Admin** account on the Locker Self-hosted system.
* An Identity Provider that supports the **SAML 2.0** protocol (Google Workspace, Azure AD, Okta, etc.).

## Configure SSO

<Steps>
  <Step title="Open SSO settings">
    Log in with your Super Admin account > **Settings** > **SSO**.
  </Step>

  <Step title="Enable SSO">
    Toggle the SSO status to **Enabled**.
  </Step>

  <Step title="Configure the Identity Provider">
    Enter the information from your Identity Provider:

    * **Entity ID (Issuer):** The Identity Provider's identifier URL
    * **SSO Login URL:** The SSO login URL
    * **X.509 Certificate:** The authentication certificate from the Identity Provider
  </Step>

  <Step title="Configure the Service Provider">
    Copy the following information from Locker and enter it into your Identity Provider configuration:

    * **ACS URL (Assertion Consumer Service)**
    * **Locker's Entity ID**
  </Step>

  <Step title="Test">
    Click **Test Connection** to verify that SSO is working.
  </Step>

  <Step title="Save">
    Click **Save** to apply.
  </Step>
</Steps>

<Note>
  After enabling SSO, users will see a **Log in with SSO** button on the Locker login page.
</Note>
