SAML
Vault is SAML v 2.0 compliant and able to support most IdPs. Vault only uses SAML protocol for SSO to the UI.
OAuth 2.0/OpenID Connect
Vault File Manager and Veeva Snap use OAuth 2.0/OpenID Connect and have been tested with and can support the following authorization servers:
- PingFederate 8.x
- ADFS 4.0, 5.0
- Okta
Support Matrix
IdP |
Vault (Supported) SAML |
VFM Supported OAuth/OIDC |
Veeva Snap Supported OAuth/OIDC |
ADFS 2.0,3.0 |
X |
||
ADFS 4.0, 5.0 |
X |
X |
X |
PingFederate – 8.x, 9.x |
X |
X1 |
X |
Okta |
X |
19R1 |
X |
Exostar |
X |
X | |
Siteminder |
X1 |
||
PingOne |
X1 |
||
OneLogin |
X1 |
X1 |
|
Centrify |
X1 |
||
Liferay |
X1 |
||
VMware Identity Manager |
X1 |
||
Microsoft Entra ID |
X |
X | |
Oracle IDM |
|||
Auth0 |
X1 |
||
IdentityNow |
X1 |
||
VeevaID |
X |
X1 = Used by Veeva customers but not officially tested by Veeva.