Organization & Access

SSO Configuration

Enterprise plans support Single Sign-On via SAML 2.0, OpenID Connect, or LDAP.

SAML Configuration

Navigate to Settings > Security > SSO
Select SAML as the provider
Enter your IdP metadata URL or upload the metadata XML
Configure attribute mappings for email, name, and groups
Test the connection before enabling

OIDC Configuration

Enter your OIDC provider's client ID, client secret, and discovery URL.

LDAP Configuration

Enter your LDAP server URL, bind DN, and search base. Configure group-to-role mappings.

Domain Allowlisting

Restrict sign-in to specific email domains in Settings > Security > Allowed Domains.

Previous

Roles & Permissions

Next

SCIM Provisioning

On this page

SAML Configuration OIDC Configuration LDAP Configuration Domain Allowlisting