Identity Providers
Identity providers enable centralized authentication and user management for your Dremio environment. Integrating with an external identity system allows you to:
- Centralize user management – Maintain user accounts in a single system
- Enable single sign-on – Users authenticate once to access multiple applications
- Enhance security – Leverage enterprise-grade authentication mechanisms
- Simplify administration – Reduce the overhead of managing separate user accounts
- Ensure compliance – Meet organizational security and audit requirements
Dremio Identity Provider Types
OpenID Connect (OIDC) Providers
An OpenID Connect (OIDC) identity provider is a service that verifies a user's identity and manages their access to resources. OIDC providers use the OpenID Connect protocol to perform these functions. Enterprise OIDC providers can be configured as external token providers, which allows applications to access protected user data.
When to use OIDC:
- Modern cloud-based identity systems
- Environments requiring OAuth 2.0 integration
- Organizations using federated identity management
- Applications requiring token-based authentication
For more information, see the following:
LDAP
Lightweight Directory Access Protocol (LDAP) refers to an external service that manages user data stored within an LDAP directory and provides that user data to Dremio.
When to use LDAP:
- On-premises Active Directory environments
- Legacy systems with existing LDAP infrastructure
- Organizations requiring direct directory integration
- Environments where OIDC is not available
For more information, see: