My Oracle Support Banner

EM 13.5: How to Configure/Rollback Enterprise Manager Cloud Control Authentication with SSO using SAML 2.0 (Doc ID 2882744.1)

Last updated on OCTOBER 11, 2023

Applies to:

Enterprise Manager Base Platform - Version and later
Information in this document applies to any platform.


SAML is a standard that enables seamless, single sign-on (SSO) login into applications. It works by transferring the user’s identity from one place (the identity provider) to another (the service provider) through an exchange of digitally signed XML documents. Oracle Enterprise Manager supports SAML version 2.0.




To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document
 A. Configuring Authentication with SAML2.0
 1. Prerequisites
 2. Creation of Service Provider Metadata and exporting at OMS side.
 3. Steps required to perform at Identity Provider side
 4. Steps required to perform at Service Provider side (OMS)
 5. Adding External Users as EM Users
 5a. Add the Users Manually on EM Console
 5b. Add the Users Manually using EMCLI
 5c. Autoprovision External users to OEM
 6. Bypassing the Single Sign-On Logon Page
 B. Rollback EM Authentication with SAML2.0 using EMCTL Command

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.