Identity Management

Use this search bar to search topics within Identity Management.

CME Group provides the capability for clients to manage authentication, entitlements, and profiles via the following services:

• CME Group Login is a self-managed, centralized user profile service for registering and authenticating access to CME Group premium digital content and entitled applications and services.  Learn how to create and manage a CME Group Login.

• Two-Factor Authentication requires two methods to verify your identity when accessing CME Group applications and services: something you know, like a username and password, and something you have, like a smartphone or keychain fob. Learn more about Two-Factor Authentication.

• Federation Single Sign-On is an identity and access service for authorized companies to log into most CME Group applications using their enterprise credentials. Federation is a standards-based approach that enables access to applications across different organizations that have established a trust relationship, without sharing any credentials outside the organization. Firms that federate with CME Group are required to support an identity provider (IdP) infrastructure capable of SAML 2.0 or OpenID Connect.

  • Learn about CME Group Federation Single Sign-On Integration. 

  • Learn about Managing Federation Single Sign-On. 

• OAuth is an open protocol that allows secure authorization in a simple and standard method from web, mobile and desktop applications. It specifies a process for resource owners to authorize third-party access to their server resources without sharing their credentials. Learn more about OAuth 2.0. 

• User Access Removal is a web service API used to revoke entitlements to CME Group services and applications, including API IDs, associated with a CME Group Login ID.  Learn more about the User Access Removal service.

Topics in this section: