debian-mirror-gitlab/doc/administration/auth
2021-06-08 01:23:25 +05:30
..
img New upstream version 13.11.2+ds1 2021-04-29 21:17:54 +05:30
ldap New upstream version 13.12.3+ds1 2021-06-08 01:23:25 +05:30
atlassian.md New upstream version 13.12.3+ds1 2021-06-08 01:23:25 +05:30
authentiq.md New upstream version 13.12.3+ds1 2021-06-08 01:23:25 +05:30
cognito.md New upstream version 13.12.3+ds1 2021-06-08 01:23:25 +05:30
crowd.md New upstream version 13.12.3+ds1 2021-06-08 01:23:25 +05:30
jwt.md New upstream version 13.12.3+ds1 2021-06-08 01:23:25 +05:30
oidc.md New upstream version 13.12.3+ds1 2021-06-08 01:23:25 +05:30
okta.md New upstream version 13.11.2+ds1 2021-04-29 21:17:54 +05:30
README.md New upstream version 13.12.3+ds1 2021-06-08 01:23:25 +05:30
smartcard.md New upstream version 13.12.3+ds1 2021-06-08 01:23:25 +05:30

comments type stage group info
false index Manage Access To determine the technical writer assigned to the Stage/Group associated with this page, see https://about.gitlab.com/handbook/engineering/ux/technical-writing/#assignments

GitLab authentication and authorization (FREE SELF)

GitLab integrates with the following external authentication and authorization providers:

NOTE: UltraAuth has removed their software which supports OmniAuth integration. We have therefore removed all references to UltraAuth integration.

SaaS vs Self-Managed Comparison

The external authentication and authorization providers may support the following capabilities. For more information, see the links shown on this page for each external provider.

Capability SaaS Self-Managed
User Provisioning SCIM
JIT Provisioning
LDAP Sync
User Detail Updating (not group management) Not Available LDAP Sync
Authentication SAML at top-level group (1 provider) LDAP (multiple providers)
Generic OAuth2
SAML (only 1 permitted per unique provider)
Kerberos
JWT
Smartcard
OmniAuth Providers (only 1 permitted per unique provider)
Provider-to-GitLab Role Sync SAML Group Sync LDAP Group Sync
User Removal SCIM (remove user from top-level group) LDAP (Blocking User from Instance)