Authentication Providers

The JFrog Platform supports several authentication methods:

• OpenID Connect Integration (OIDC): A modern, lightweight protocol built on top of OAuth 2.0; suitable for Identity Providers that support OIDC for a simpler configuration than SAML.
• SAML SSO: The industry standard for XML-based authentication; suitable for integrating with most enterprise Identity Providers (IdPs) such as Okta, PingIdentity, or OneLogin.
• OAuth SSO: A token-based authentication standard; suitable for enabling logins via external third-party services like GitHub, Google, or GitLab.
• SCIM: Automates user and group syncing (provisioning) from your Identity Provider; suitable for keeping user data up-to-date, but must be paired with an SSO method (like SAML) for login.
• Entra ID: A dedicated integration for the Microsoft ecosystem; suitable for organizations managing identities via Microsoft Azure or Office 365.
• HTTP SSO: Enables header-based authentication via a reverse proxy; suitable for legacy setups relying on Kerberos, NTLM, or Apache mod_auth.
• Atlassian Crowd and JIRA Integration: Delegates user management to Atlassian servers; suitable for teams that centrally manage users via Jira or Crowd.
• LDAP: Connects directly to corporate directories like Active Directory or OpenLDAP; suitable for on-premise environments that do not use a federated Identity Provider.