Dash0 Raises $110M Series B at $1B Valuation

Last updated: March 24, 2026

User Authentication

Learn about the authentication mechanisms supported by Dash0, including password-based sign-in, social logins, enterprise SSO via SAML, two-factor authentication, and session management.

Dash0 supports multiple authentication mechanisms to balance ease of use with enterprise security requirements. You can sign in with a password, use social logins, or configure enterprise single sign-on (SSO) through SAML.

Password Authentication

You can register and sign in using your email address and a password.

Passwords must be at least 10 characters long and meet a minimum strength threshold based on zxcvbn, which evaluates resistance to common cracking techniques rather than relying on arbitrary complexity rules like requiring special characters.

Social Logins

Dash0 supports single sign-on through the following providers:

  • GitHub: Sign in with your GitHub account.
  • Google: Sign in with your Google account.
Info

A single Dash0 account can be linked to multiple authentication methods at the same time. For example, you can have password authentication, GitHub, and Google all connected to one account. This means you never have to remember which method you used to sign up. Any linked method will get you into the same account.

Enterprise Single Sign-On (SAML)

For organizations that require centralized identity management, Dash0 supports enterprise SSO through SAML. Compatible identity providers include:

  • Google Workspace
  • Microsoft Entra ID
  • Okta
  • Any SAML-compliant identity provider

Enterprise SSO is configured on demand by the Dash0 customer success team. Contact support@dash0.com to set up a SAML connection for your organization.

Organization-Linked SAML Connections

A SAML connection can be linked to a specific Dash0 organization. When linked, any user whose email address matches the domain of the SAML connection is required to authenticate through that SAML connection before accessing the organization. The session must have been validated through the SAML provider, even if the user previously signed in with a password or social login.

Info

Each email domain can be linked to at most one Dash0 organization. If your users need to sign in to multiple Dash0 organizations, use an unlinked SAML connection instead.

This enforcement applies only to the domain tied to the SAML connection. Users with email addresses on other domains can still be invited to the organization and authenticate normally.

Unlinked SAML Connections

It is also possible to establish a SAML connection that is not linked to an organization. In this case, users with a matching email domain are still verified through the SAML connection at sign-in, but they are not automatically added to any organization. Organization membership must be managed manually through invitations.

This is the recommended setup when users with the same email domain need access to multiple Dash0 organizations, since an organization-linked connection restricts the domain to a single organization.

Two-Factor Authentication

Dash0 supports two-factor authentication (2FA) using time-based one-time passwords (TOTP). You can set up 2FA with any compatible authenticator application, for example:

  • Google Authenticator
  • Authy
  • 1Password
  • Bitwarden

2FA is configured per user from your account settings. It is currently not possible to enforce 2FA at the organization level.

Session Lifetime

Sessions have a maximum lifetime of 31 days from the time of sign-in. After 31 days, you will be required to re-authenticate regardless of activity.