# Configuring SSO for Cortex workspace logins

Cortex always maintains a strong security posture. Aside from being SOC 2 Type 2 certified and protecting your data through strict process and standards, Cortex supports SSO through most major vendors. SSO is supported through any OIDC provider. The scopes Cortex requires for OIDC to function are: `openid`, `email`, and `profile`, and the only data Cortex stores from the OIDC flow is the user's `name` and `email`.

### SSO integrations

Cortex offers native integrations for:

* [Entra ID](/configure/settings/managing-users/configuring-sso/entraid.md) (including [Entra ID SCIM](/configure/settings/managing-users/provisioning-users-with-scim/entraid-scim.md))
* [Google](/configure/settings/managing-users/configuring-sso/google.md)
* [Okta](/configure/settings/managing-users/configuring-sso/okta.md) (including [Okta SCIM](/configure/settings/managing-users/provisioning-users-with-scim/okta-scim.md))

You can also configure other OIDC providers via the [Generic OIDC providers](/configure/settings/managing-users/configuring-sso/oidc.md) documentation.


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.cortex.io/configure/settings/managing-users/configuring-sso.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.