← Glossary·Security

SSO (Single Sign-On)

SOC 2ISO 27001

Federated authentication via SAML 2.0 or OIDC against a central identity provider (Okta, Entra ID, Google).

Single Sign-On allows a user to authenticate once at a trusted identity provider (IdP) and access multiple downstream applications without re-entering credentials. Standards: SAML 2.0 (enterprise) and OIDC/OAuth 2.0 (modern web).

Why it matters
Enterprise procurement increasingly requires SSO at the base plan, not as an ‘SSO tax’ upsell — the ‘SSO Wall of Shame’ is a real GTM consideration.

Related terms

MFA (Multi-Factor Authentication)
Authentication requiring two or more factors from independent categories (knowledge, possession, inherence).
SCIM
Open standard for automated user provisioning/deprovisioning from an IdP to SaaS apps.
RBAC (Role-Based Access Control)
Access control model granting permissions to roles, and assigning users to roles.

Does your program actually cover SSO (Single Sign-On)?

Run a free ComplianceIQ audit against SOC 2 and we'll surface every gap on this — and the other controls auditors flag — with the exact clause references to fix.

Free SOC 2 auditBack to glossary