Mender blog
It is now possible to configure your tenant on Hosted Mender to leverage a SAML-compatible Identity Provider (IdP) to identify and authenticate users. Thanks to this feature, users can log in to Mender using their existing credentials (e.g., Azure/Microsoft, AWS, or any other SAML-compatible service.
Setting up Mender as a SAML Service Provider (SP) requires uploading the SAML metadata from your IdP in the “Organization and billing” settings view. Once the XML metadata file upload is complete, you will obtain the Start URL (login URL), which will initiate the SAML authentication for your user.
Only authorized users from your IdP can log in to Mender. You can authorize users by creating them in the “User management” settings view, leaving the optional password field blank. This way, the user will be automatically linked to the SAML IdP on the first log-in.
The feature is available in the Enterprise plan on Hosted Mender and in the on-prem version of Mender Enterprise.
Recent articles
CVE-2025-49603 - Improper access control of device groups in Mender Server
An ethical hacker on our HackerOne private bug bounty program recently discovered and disclosed access control issues with device groups in Mender Server.
IoT growth is outpacing readiness – here’s what the data says
Learn more about the key takeaways from Northern.tech's recent 2025 State of Industrial IoT Device Lifecycle Management report.
Does EU CRA compliance require advanced OTA update capabilities?
Learn about the requirements of the EU CRA. Outlining the importance of robust OTA update capabilities as a cornerstone of CRA compliance.
Learn why leading companies choose Mender
Discover how Mender empowers both you and your customers with secure and reliable over-the-air updates for IoT devices. Focus on your product, and benefit from specialized OTA expertise and best practices.
