Do you want to retain total control of your users through a centrally managed system?
Anaplan single sign-on (SSO) gives you the ability to place user authentication entirely under your control. This allows Anaplan users to navigate to a dedicated web page and access the model directly rather than entering a user name and password.
Anaplan fully supports SAML 2.0 for SSO. This includes password complexity policies, time-of-day access windows, two-factor authentication, and any other controls required by the customer’s security policies.
How do you set up SSO for Anaplan?
Anaplan requires a technical resource, typically from IT, who knows the SSO setup at your organization. This resource should be able to answer questions about your instance (see the list of information required below).
Required information (check with your IT department):
- Identity Provider IdP URL
- Public IdP certificate in Base64 format
- Key size required = 1024 or 2048
- Is the Digital signed AuthnRequest required (yes or no)?
- SAML Idp provider vender/type
- Are you running multiple Idp servers
- Any other non-standard SAML parameters
Anaplan will supply:
- SAML SP URL
- Anaplan public certificate / metadata
If you have any issues, visit our Support website where you'll find helpful articles, as well as options to contact our Care team. You can also reach out to your customer success business partner or your implementation partner with any questions.
What if some users aren't part of my company?
Anaplan users that aren't part of your company (for example, your Anaplan consultants) are known as “exception users”. Once SSO is setup, users flagged as exception users will continue to log in as normal through anaplan.com. The settings for exception users is located under the "Users" tab in "Settings". By default, all users will have SSO selected. To enable exception users, de-select the option for SSO: