OpenID Connect identity providers that support single signon

If your OpenID Connect identity provider supports single sign-on and two-factor authentication, Cognos® Analytics can leverage this functionality.

If the identity provider does not support single sign-on, when a user makes an authentication request to Cognos Analytics, the user is redirected to the OpenID Connect identity provider logon page. After providing the required information, the user is redirected back to Cognos Analytics with an authorization code that is redeemed for an ID token that contains the identity of the user. The user can then access Cognos Analytics.

If the identity provider supports single sign-on, the user receives the ID token when making the authentication request to Cognos Analytics, and can immediately access the application.