Supported OIDC Configuration
OpenID is an identity protocol that enables your users to sign in to Prelude Detect using an Identity Provider. The providers supported by Prelude at this time are:
Generic OIDC Configuration
When attaching any of these providers to your Prelude account, you will need to provide three pieces of information:
- Client Id
- Client Secret
- Configuration Url (this should always end in
.well-known/openid-configuration)
From your OIDC platform, you'll also need to set the redirect_url to Prelude's callback endpoints:
https://api.<region>.preludesecurity.com/iam/account/login, whereregiondepends on where your account is registered (us1oreu1).-
https://platform-auth.<region>.preludesecurity.com/oauth2/idpresponse, where<region> depends on where your account is registered (
us1oreu1).
Configure Prelude User accounts to use SSO
Note: After configuring SSO above you must specify which user accounts will use SSO explicitly. Additionally, you cannot update an existing user using password authentication to SSO currently, instead you must delete the user and recreate with SSO auth.
- In the Prelude UI, click your name/id in the top right corner, then select Account Users
- Select Invite a User to invite a new user and specify OpenID Connect to use Entra SSO