# Single Sign-On for DigitalOcean Teams

*Single sign-on* (SSO) is an authentication service that lets users access multiple applications by signing in once with a single set of credentials. An *identity provider* (IdP) is an authentication service that manages user identities for applications.

When a logged-out user tries to access an SSO-enabled app, the app redirects the user to the IdP to authenticate. Using a secure protocol, like [SAML](https://en.wikipedia.org/wiki/Security_Assertion_Markup_Language) or [OpenID Connect (OIDC)](https://en.wikipedia.org/wiki/OpenID#OpenID_Connect_%28OIDC%29), the app sends the user’s credentials to the IdP which then verifies the user’s identity.

SSO on DigitalOcean supports OIDC-compatible IdPs, like Okta.

[How to Configure Single Sign-On for Teams](https://docs.digitalocean.com/platform/teams/how-to/configure-sso/index.html.md): Enable single sign-on (SSO) to let team members sign in to DigitalOcean with a single set of credentials from an OIDC-compatible identity provider (IdP), like Okta.

When you have SSO enabled on a team, you can view SSO activity on the [SSO activity page](https://cloud.digitalocean.com/account/team/sso/activity).