tencent cloud


Configuring SAML in Tencent Cloud

Last updated: 2024-01-23 17:39:39


    To make sure that a user in your IdP can log in to Tencent Cloud (the SP) via user-based SSO, you need to configure SAML for the IdP in Tencent Cloud to make Tencent Cloud trust your IdP.


    1. Log in to the CAM console with your Tencent Cloud account.
    2. On the left sidebar, click Identity Providers > User-Based SSO.
    3. On the user-based SSO management page, you can view the user-based SSO status and the configuration information.
    4. You can enable or disable user-based SSO by clicking on the button next to it.
    When user-based SSO is enabled: CAM sub-users cannot log in to Tencent Cloud via account ID and password. All CAM sub-users will be redirected to the IdP user login page for identity verification.
    When user-based SSO is disabled: CAM users can login to Tencent Cloud via account ID and password, and the user-based SSO settings will not take effect.
    5. Click Select File to upload the metadata file provided by your IdP. If you want to upload another file to replace the uploaded one, click Upload Again.
    Your IdP provides the metadata file (typically in XML format). It contains the login URL as well as an X.509 public key certificate for verifying the validity of the IdP's SAML assertion.
    If your IdP only provides the access address of the metadata, you can copy the address to the browser to open it. Then you can save the metadata as an XML file and upload it.
    Contact Us

    Contact our sales team or business advisors to help your business.

    Technical Support

    Open a ticket if you're looking for further assistance. Our Ticket is 7x24 avaliable.

    7x24 Phone Support