⌘K
Back to all articles
Security

SSO / SAML

Single sign-on with SAML 2.0 for enterprise identity providers.

Updated May 27, 2026

SAML 2.0 single sign-on lets your team sign in through your identity provider, so access follows your central directory. It is an enterprise capability.

SSO and SAML configuration

Supported providers

Queringo acts as a SAML service provider and works with major identity providers including Okta, Azure AD, OneLogin, and PingFederate. Sign-in uses provider-initiated and service-provider-initiated web SSO with signed assertions.

Setting it up

Configure the connection in SSO settings: your email domain, the provider's entity ID and SSO URL, the signing certificate, and the attribute mapping for email and name. Optionally enable just-in-time provisioning so accounts are created on first sign-in, and run the built-in connection test.

Pair SSO with SCIM so accounts are not only authenticated through your IdP but also provisioned and deprovisioned automatically.

What's next

Automate user lifecycle with SCIM.