SEND Explorer can be configured to use single sign-on (SSO) for authentication, rather than using the built-in SEND Explorer user authentication functionality. When SSO is used for authentication, the user login and password is what is used for login to their organization's overall network. No separate password for SEND Explorer is used.
SEND Explorer currently supports SAML, OIDC and Active Directory for SSO. Configuration is typically done at the time of implementation through information exchange between Certara and the client's IT support staff, and can be generally be completed through email exchange or a short meeting. The client will need to provide necessary certificates based on their provider and Certara will provide URLs and any other configuration information required on the SEND Explorer side.
When SSO is used for authentication in SEND Explorer, a SEND Explorer account is still needed to manage authorization or permission levels for a user within SEND Explorer. Administrators in SEND Explorer can create accounts for users and set the "claim" or permission level on each account. This account then links with the SSO account for the user through email address and manages SEND Explorer permissions levels for users.
If there are any changes to an organization's SSO system interfacing with SEND Explorer, contact Certara support (support@certara.com) for assistance with updating SEND Explorer SSO configuration.