Manage single sign-on
This page covers how to manage single sign-on (SSO) after initial setup, including managing domains, connections, users, and provisioning settings.
Manage domains
Add a domain
To add a domain to an existing SSO connection:
- Sign in to Docker Home and select your company or organization.
- Select Admin Console, then SSO and SCIM.
- In the SSO connections table, select the Actions menu for your connection, then select Edit connection.
- Select Next to navigate to the domains section.
- In the Domains section, select Add domain.
- Enter the domain you want to add to the connection.
- Select Next to confirm or change the connected organizations.
- Select Next to confirm or change the default organization and team provisioning selections.
- Review the connection details and select Update connection.
Remove a domain from an SSO connection
ImportantIf you use multiple identity providers with the same domain, you must remove the domain from each SSO connection individually.
- Sign in to Docker Home and select your company or organization.
- Select Admin Console, then SSO and SCIM.
- In the SSO connections table, select the Actions menu for your connection, then Edit connection.
- Select Next to navigate to the domains section.
- In the Domain section, select the X icon next to the domain you want to remove.
- Select Next to confirm or change the connected organizations.
- Select Next to confirm or change the default organization and team provisioning selections.
- Review the connection details and select Update connection.
NoteWhen you re-add a domain, Docker assigns a new TXT record value. You must complete domain verification again with the new TXT record.
Manage SSO connections
View connections
To view all configured SSO connections:
- Sign in to Docker Home and select your company or organization.
- Select Admin Console, then SSO and SCIM.
- View all configured connections in the SSO connections table.
Edit a connection
To modify an existing SSO connection:
- Sign in to Docker Home and select your company or organization.
- Select Admin Console, then SSO and SCIM.
- In the SSO connections table, select the Actions menu for your connection, then Edit connection.
- Follow the on-screen instructions to modify your connection settings.
Delete a connection
To remove an SSO connection:
- Sign in to Docker Home and select your company or organization.
- Select Admin Console, then SSO and SCIM.
- In the SSO connections table, select the Actions menu for your connection, then Delete connection.
- Follow the on-screen instructions to confirm the deletion.
WarningDeleting an SSO connection removes access for all users who authenticate through that connection.
Manage users and provisioning
Docker automatically provisions users through Just-in-Time (JIT) provisioning when they sign in via SSO. You can also manually manage users and configure different provisioning methods.
How provisioning works
Docker supports the following provisioning methods:
- JIT provisioning (default): Users are automatically added to your organization when they sign in via SSO
- SCIM provisioning: Sync users and groups from your identity provider to Docker
- Group mapping: Sync user groups from your identity provider with teams in your Docker organization
- Manual provisioning: Turn off automatic provisioning and manually invite users
For more information on provisioning methods, see Provision users.
Add guest users
To invite users who don't authenticate through your identity provider:
- Sign in to Docker Home and select your organization.
- Select Members.
- Select Invite.
- Follow the on-screen instructions to invite the user.
The user receives an email invitation and can create a Docker account or sign in with their existing account.
Remove users
To remove a user from your organization:
- Sign in to Docker Home and select your organization.
- Select Members.
- Find the user you want to remove and select the Actions menu next to their name.
- Select Remove and confirm the removal.
The user loses access to your organization immediately upon removal.