Knowledge DropLast tested: Jun 26, 2020 BigQuery customers have the option of using OAuth for BigQuery connect...
Knowledge DropLast tested: Oct 7, 2020 There are a number of errors and settings to be aware of when using SAM...
Knowledge DropLast tested: Jan 2019No. Roles will be overwritten for a user any time that user logs in with [S...
Knowledge DropLast tested: May 19, 2020 When "Mirror SAML Groups" is toggled on in your instance's SAML settin...
Knowledge DropLast tested: May 10, 2018 There are two different interpretations of this question, with two dif...
Knowledge DropLast tested: Oct 1, 2019 No, the only user ID you can use in Looker is an email. Logging in will...
Knowledge DropLast tested: Sep 18, 2019 Looker doesn't use tokens at all when authenticating with SAML.In fact...
Knowledge DropLast tested: Jan 31, 2018 Generally speaking, no. Each Looker user is only allowed one set of cr...
Knowledge DropLast tested: Sep 18, 2019 They definitely should. If it's not coming through, check the tests in...
Knowledge DropLast tested: Jun 26, 2021 No, only SAML or Oauth would do that.This has nothing to do with Looke...
Knowledge DropLast tested: Dec 3, 2017 Fortunately, when migrating to SAML there is an option to merge from LD...
Knowledge DropLast tested; Sep 18, 2019 You can't edit who is in a shadow group from the Looker admin/groups U...
Knowledge DropLast tested: Sep 18, 2019Looker can work with a single SAML 2.0 IdP endpoint. If it is possible ...
Knowledge DropLast tested: Feb 6, 2020 If you turn off group to role mapping but continue to use SAML / LDAP a...
Knowledge DropLast tested: Aug 29, 2018 Yes - it is disabled by default.Looker email/password logins are alway...
Knowledge DropLast tested: Dec 3, 2020 Yes. They are immediately logged out and see the above screen.This cont...
Knowledge DropLast tested: May 20, 2019 No. As far as Looker is concerned, you can only have 1 SAML IdP.Hacky ...
Knowledge DropLast tested: Dec 16, 2020 nopeyou can either have 2fa on top of email/pass or google oauthThis c...
Knowledge DropLast tested: Apr 14, 2020Sometimes when we change a user's email on the IdP side, the saml_user_...
Knowledge DropLast tested: Oct 2, 2020 There's been some instances where users click "Stay Logged In" but they...
Knowledge DropLast tested: May 20, 2020 SAML is just a type of SSO to Looker, in terms of what is set up in th...
Knowledge DropLast tested: May 19, 2020If a user clicks the "Activate" link on the "Welcome to Looker" user se...
Knowledge DropLast tested: Apr 30, 2020 This is expected - Looker rechecks the IdP every time a Looker user is...
Knowledge Drop Last tested: Aug 2020Check to make sure the callback URL is just myinstance.looker.com/samlcall...
Knowledge DropLast tested: Jul 13, 2019You can look forupdate_totp_config in the logs and in the System Activi...
Knowledge DropLast tested: Jul 24, 2020 You can set Looker roles based on the groups in your IdP. If you alrea...
Knowledge DropLast tested: Jun 14, 2019 It's Secure:It's more secure than OAuth alone, since it has more robus...
Knowledge DropLast tested: Aug 23, 2018When a user logs in using OpenID auth (i.e. Okta, OneLogin, etc.), Look...
Knowledge DropLast tested: Apr 26, 2019A greyed out *email credential* means one of two things:1. the user is ...
Knowledge DropLast tested: June 2021No. Looker doesn't automatically keep track of whether the user has been r...