Connecting enterprise SSO allows you and your team to access Drata through your preferred identity provider.
Prerequisites
Make sure you have admin access to your company's SSO account. Supported apps include: Entra ID (Azure AD), Google Workspace, ADP, Auth0, CAS, ClassLink, Cloudflare, CyberArk, Duo, JumpCloud, Keycloak, LastPass, Microsoft AD FS, miniOrange, NetIQ, OneLogin, Oracle, PingFederate, PingOne, Rippling, Salesforce, Shibboleth, Shibboleth Unsolicited, SimpleSAMLphp, and VMware.
You must have an Identity Provider (IdP) connected to Drata first, before making an SSO connection for sign-in. All Drata logins, including admins, are enforced by and restricted to what syncs from the IdP. If you connect SSO before an IdP, you will be locked out of Drata. In that case, please reach out to our Technical Support team for assistance in restoring account access.
Connect SSO to Drata
Select Connections on the side navigation menu.
Select the Available connections tab, search for SSO, and select Connect.
A drawer will expand from the right side of the screen. Follow the prompts on the drawer. You will be directed to the WorkOS page where you will follow the instructions to complete the connection.
Make sure to follow the exact steps. You will have to login as an Admin within your SSO provider.
Then follow the steps, to configure SSO with that provider. Once you are done with all of the steps, you'll be directed back to Drata (click 'Back to Drata') and your SSO account should successfully connect.