While HTTP-SSO provides access to the JPDI, it is also possible for HTTP-SSO users to generate an API Key that can be used instead of a password for basic authentication or in a dedicated REST API header, this is very useful when working with different clients, e.g. Docker, npm, maven, etc. or using Artifactory REST API.
In order to allow HTTP-SSO users access to an API key you will need to make sure that the "Auto Create Artifactory Users" and "Allow Created Users Access To Profile Page" check boxes are checked. For more information, see SAML SSO Configuration. This means that SSO users are also saved in Artifactory database and can access their User Profile in order to generate, retrieve and revoke their API key.