If you have a federated environment with a SAML Identity Provider (OneLogin, Okta, Ping Identity, ADFS, Google, Salesforce, SharePoint…), you can use this plugin to interoperate with it, thereby enabling SSO for your piwik users as well as support just-in-time provisioning. Login SAML offers advanced functionality such as just-in-time provisioning, so that your users can get their own account automatically created with the right permission in Matomo Analytics (formerly Piwik Analytics).

Previous FAQ: Why is SSO important?