Share

About Single Sign-on (SSO)

Single sign-on (SSO) is an authentication method that allows users to log into multiple services and applications using the same credentials. Specifically, Autodesk allows users to seamlessly log into multiple Autodesk products and services using their organization's user credentials.

Why use SSO?

  • Enhanced user experience - Users only need to sign in once, and need not remember multiple passwords. This saves time because they are less likely to need a password reset.

  • Enhanced security - SSO uses a single point of authentication, where passwords are received and validated only by the identity provider. This approach reduces the possibility of poor security practices such as writing down the passwords, as users are required to remember only a single password.

  • Streamlined administration - Admins only need to maintain one email/password combo for each user, and password policies applied to the network are also applied to Autodesk services. So if you revoke an employee’s email access, they will also lose access to Autodesk. Therefore, it is not necessary to revoke access to each services individually.

Scope

Autodesk SSO uses the Security Assertion Markup Language (SAML) 2.0 protocol. We have currently tested and support the following Identity Providers (IdP):

  • Microsoft Azure
  • Okta
  • Active Directory Federation Service (ADFS)
  • OneLogin
  • PingOne
  • PingFederate
  • Google Cloud Identity
  • Shibboleth

Capabilities

  • Authentication - Autodesk's SSO solution supports federated authentication. You sign in to Autodesk services using your company credentials instead of using an Autodesk ID and password. Additionally, Autodesk supports syncing groups and users from your company directory via our directory sync capabilities. Please refer to the directory sync section of the help guide for more information.
  • Support for Single User Subscription, Multi User Subscription and Token Flex licensing and Cloud Connectivity for 2017 product versions and later.
  • SSO is enforced across all products and services - Autodesk Single Sign on is implemented via email domain, not by product, project, or end point, meaning once SSO is enabled user is required to use their company credentials to access Autodesk services. There is no hybrid solution using old Autodesk ID + SSO for the same email domain.

Known Issues

  • Depending on the current patch level of your deployed software, product updates may be required to implement SSO on all Autodesk products. Please comprehensively test your products and key workflows to ensure user access is as expected.

Was this information helpful?