Create a federation

As a DoubleCloud user, you can create multiple user federations within each organization.

To create a new federation:

  1. Go to the console.

  2. In the upper-left corner of the page, click your organization name → Manage organizations.

  3. Select Members from the panel on the left, open the Federations tab and click Create.

  4. On the Create Federation page:

    1. Specify the Name of your federation.

    2. Specify the Cookie lifetime in minutes.

      DoubleCloud federations support cookie lifetime from 10 to 720 minutes (12 hours).

    3. Specify the IdP issuer.

    4. From the dropdown menu, select the SSO method:

      • POST - send your token from the SSO server using the HTTP POST method. Your token will always be encrypted. We recommend using this method as a more secure solution.

      • REDIRECT - send your token from the SSO server using an HTTP redirect . This is a more straightforward method of authentication since it doesn't require a POST request. However, it has some security limitations - your authentication token will be included in the URL, potentially exposing it to server logs.

    5. Provide a link to the IdP login page.

    6. Under Advanced:

      • Select the state of the Automatically create users checkbox:


        Users will be added to the federation automatically at the first SSO login. They'll also automatically become members of the organization to which their federation belongs.


        Users need to be invited to the federation individually.

      • Choose the state of the Sign authentication requests checkbox:


        Enable the SAML request signature verification. We strongly recommend using this option to improve your federation's security.


        Disable the SAML Request signature verification.

      • Select the state of the Case-insensitive user names checkbox:

        Enabled,, and are the same user.

        Disabled,, and are different users.

  5. Click Create Federation.

See also