If your organization uses an identity provider that supports SAML or OpenID Connect authentication methods, such as Okta, you can configure P4 Plan to use it for single sign-on (SSO). This requires using the P4 AS (HAS), which lets you integrate various Perforce products with your identity provider.
When single sign-on is enabled for P4 Plan, users click a button to use single sign-on in the login dialog box and then the identity provider site opens in a browser. The user authenticates with the provider. If authentication is successful, the user can start working in P4 Plan.
Single sign-on is supported for both the P4 Plan desktop client and the web client.
Configuring identity provider authentication and single sign-on
To configure authentication with an identity provider for P4 Plan:
1. An experienced security administrator needs to install and configure HAS. See Installing the P4 AS for single sign-on.
2. Add certificates on the P4 Plan server. See Configuring certificates for single sign-on on the P4 Plan server.
3. In the P4 Plan Server Administrator, enable single sign-on and set options. See Enabling single sign-on and setting options.
Single sign-on flow
The following diagram shows how P4 Plan, HAS, and your identity provider work together to allow single sign-on in P4 Plan. Click the diagram to enlarge it.
