SSO Users Migrating to Own Data Platform

    IMPORTANT: Configure your IdP by August 31 to access the new Own Data Platform. After this date, url access to the Own regional login url will no longer be available.
    NOTE: This article refers to accounts that existed before May 2024 with SSO enabled in the Own application and have yet to migrate to the Own Data Platform.
    For the procedure of enrolling and enabling SSO within the Own Data Platform and configuring the application within the IdP, see Setting up Single Sign On in the Own Data Platform.

    In May 2024 in line with our desire to empower you to own your data, we are launching the Own Data Platform. If you access our applications with Single Sign On through your chosen Identity Provider you must make sure your organization has made the necessary updates to continue benefiting from our improved platform security.

    When signing in to the current Own application, action is required when receiving the following pop-up message.

    NOTE: If you use multiple SSO applications to access the different regions of your account, it is recommended to disable the applications that will no longer be used before updating the application that will be used to sign in to the Own Data Platform.
    IMPORTANT: Before changing the values in your IdP provider, it is recommended to save the old values.
    If you fail to access the Own Data Platform after configuring your SSO application, you can revert to the old values and continue to access your Own account from the old url and application.
    In this scenario, contact Own Support to complete the migration process.

    Watch: Migrating to the Data Platform with Azure Entra ID SSO configuration

    1. Copy the Audience URI, Single-Sign-On URL, and the Relay State details from the pop-up message.
    2. Navigate to your company Identity Provider and enter the details in the relevant parameter fields.
    3. Using the updated configuration, with your IDP, sign in to the new Own Data Platform.
    NOTE: Security settings will no longer be available in the Own application. To access Security settings you must migrate to the new Own Data Platform.

     

    Multi-Region Accounts

    All regions in the same account will be accessible via a single IdP sign-in.  If you have multiple SSOs enabled for different regions, they will all be unified in a single sign-in method. Once you have signed in to the Own Data Platform you will have the opportunity to select the region you require to work in.

    Before updating your IDP and migrating to the Own Data Platform, we recommend signing in to all your current regions in the Own application.

    WARNING: You can only use one Single Sign-On (SSO) application to log in to the Own Data Platform. The issuer and certificate parameters will be determined by your last login to the Own Application. Therefore, when getting ready to migrate to the Own Data Platform, make sure to sign in to the Own Application using the SSO application you plan to use for accessing the Own Data Platform.

    Note:

    •  After changing your IdP configuration to the platform url, access to the Own regional login url will no longer be available.
    • Adding a region for SSO accounts will only be possible once migration to the new Own Data Platform has been performed.

    Multiple Own Accounts

    Audience URL and Single Sign-On URL are unique per Own Account. SSO must be set up separately for each Own Platform Account. 

    Troubleshooting

    Issue: Do I need to replace my certificate after updating my IdP configuration with the new Own Data Platform values?

    Resolution: Most SAML-based Single Sign-On applications will only require you to update the above values and will not cause the certificate to change. If you find that your certificate has been updated as well, please contact customer support in order to allow you to upload your new certificate and complete the migration process.

     

    Issue: I can't change my security settings in Own.

    Resolution: There is no need to change the security settings in Own account to complete the migration. Update the respective values in your IdP single sign-on application and perform a successful login with the updated app in order to complete the migration. Once migrated to the new Own Data Platform, the security settings will be available for configuration.

     

    Issue: When updating my SSO application in Azure, I receive the following error:

    Resolution: This error can be resolved by creating a new application in Microsoft Entra ID and using it to sign in to the Own Data Platform: Creating an Application for SSO in Azure.

    Issue: The home page only partially loads after migration to the Own Data Platform.

    Resolution: Verify that you have allowlisted the following URLs:

    • app.owndata.com
    • auth.owndata.com
    • The regional URLs of any region you have an account in. For example, if you have a region in usgov2, allow the following URL: usgov2.owndata.com. You can see the region name in the left-side navigation bar in the Own Platform.
    « Previous ArticleNext Article »