How can I log in to my Panther instance if there are no SAML admins and "enforce SSO" is enabled?

QUESTION

I accidentally deleted all SAML admin users while having the "enforce SSO" option enabled in my Panther instance. When I logged back in, I got set to the AnalystReadOnly role. How can I log in as an admin again to my Panther instance?

ANSWER

Please contact the Panther Support team and let them know that you wish to disable SSO enforcement. (If you manage multiple Panther accounts, please provide the relevant AWS Account ID, found on the General settings page.)

Once SSO enforcement is disabled, navigate to the Panther login page and use the email and password of an admin user to log in. You can also proceed with a password reset if needed.

Please note that although you can remove all SAML admins, a non-SAML admin will always be present in your Panther instance. You can use this admin account to regain access when the SSO enforcement is disabled.