Enterprise

Security and SSO

Enterprise customers often need stronger identity and access controls than a single dashboard login can provide.

Enterprise customers often need stronger identity and access controls than a single dashboard login can provide.

Current enterprise security themes

SSO
session management
IP allowlists
key restrictions
audit-friendly access boundaries

SSO support in the current product plan

Supported protocols:

Protocol	Notes
SAML 2.0	supports major enterprise IdPs such as Azure AD, Okta, and OneLogin
OIDC	standard OpenID Connect-based SSO

Typical configuration inputs

enable or disable SSO
choose protocol: saml or oidc
IdP URL
Entity ID or Client ID
X.509 certificate for SAML flows

Business rules

SSO configuration is an admin-level control
password login may remain available unless the organization enforces SSO-only access
SSO rollout should include a test connection step before enforcement

Session controls

Enterprise environments commonly need:

session timeout policies
forced re-authentication
optional single-session enforcement

Customer checklist

Before rollout, confirm the protocol, IdP metadata, administrator ownership, fallback login policy, and test plan.

Roles and Permissions

Roles define who can manage organizations, projects, keys, usage visibility, billing, and security settings.

Webhooks and Notifications

Enterprise customers need operational events pushed into their own systems instead of checking dashboards manually.

On this page

Current enterprise security themes SSO support in the current product plan Typical configuration inputs Business rules Session controls Customer checklist