Company-level SAML allows individual client companies to integrate their own Identity Provider, keeping their authentication separate from the MSP.
Best for:
- Client companies with their own Azure AD/Okta
- Customers who require SSO through their corporate IdP
- Organisations with strict security policies requiring their own authentication
How it works:
- Navigate to the specific company's settings
- Configure SAML at Company Settings → SSO
- Select Add your first provider, then follow the instructions on how to setup SAML SSO.
- Users who authenticate via this SAML provider can only access that specific company
Key characteristics:
- ✅ Each client can use their own IdP
- ✅ Client IT teams can manage their own SSO configuration
- ✅ Users are scoped to their company only
- ✅ Supports customer compliance requirements
- ✅ Keeps client authentication separate from MSP