OAuth2 Concepts

Reltio Connected Cloud supports SSO with the OAuth 2.0 protocol.

OAuth2 Concepts

Reltio SSO can be enabled for any authorization server or identity provider (IdP) that supports OAuth 2.0. Currently, Reltio platform certifies Ping Identity, Google Apps, GitHub, Active Directory Federation Services, and Okta Single Sign-On.

When you have an external identity provider such as PingFederate, and you configure SSO for your Reltio platform tenant, Reltio platform is then acting as a service provider. In accordance with OAuth 2.0 protocol specifications, a typical Reltio platform SSO environment will include:

  • Resource Owner: a valid Reltio platform user with privileges to access a tenant in Reltio Connected Cloud
  • Resource Server: instance of Reltio Connected Cloud which hosts protected resources (i.e. tenant data) and provides access to Client with a valid token
  • Client: an application which makes requests to access a protected resource (i.e. a tenant)
  • Authorization Server: an authorization server or IdP which issues an access token to Client with a valid authorization grant