How We Added Single Sign-On to PagerDuty

PagerDuty's implementation of Single Sign-On (SSO) received positive feedback from customers who appreciated the convenience of managing fewer passwords. The integration of OneLogin's Ruby SAML Toolkit was chosen for its reliability and compatibility with PagerDuty's Rails application. Extensive testing, including manual and automated checks, ensured the system's security and reliability, with specific modifications made to suit PagerDuty's needs. For mobile applications, SAML was combined with OAuth for authentication. The company conducted customer previews to refine their monitoring processes, primarily using Sumo Logic, and adjusted alerts to provide actionable and detailed information without compromising sensitive data. They addressed challenges such as clock drift, ensuring consistent authentication between servers. PagerDuty has partnered with identity providers like Okta and OneLogin to facilitate SSO setup, and offers guidance for implementing SSO with other SAML 2.0 capable providers, including Google Apps.