Single sign-on

For larger teams, Wrenbase fits into the identity provider you already run. Your team signs in the way they sign in to everything else, and your IT team manages who has access from one place.

Set up with our team

What single sign-on gives you

  • One login for your team. People sign in to Wrenbase through your identity provider instead of a separate Wrenbase login, so there’s one less password to manage.
  • Central control. Your IT team decides who has access. When someone joins or leaves, you handle it where you already handle everything else, and Wrenbase follows.
  • Your security policy, applied. Whatever rules you enforce at sign-in, like multi-factor, carry through to Wrenbase.

Protocols and providers

Wrenbase supports the standard single sign-on protocols, so it works with the identity provider you already run:

  • SAML 2.0
  • OpenID Connect (OIDC)

These are the common standards behind the major providers, including Okta, Microsoft Entra ID (formerly Azure AD), Google Workspace, OneLogin, JumpCloud, and Ping Identity. If your provider speaks SAML or OIDC, which nearly all of them do, we can connect it. If you’re not sure what yours uses, tell us who it is and we’ll sort it out with you.

Automatic provisioning with SCIM

Single sign-on decides who can get in; SCIM keeps your team roster in sync. With SCIM connected, the accounts in Wrenbase follow your directory automatically: when someone joins, their account is created; when their role changes, it updates; and when they leave, their access is removed without anyone doing it by hand.

That keeps access accurate as your team changes and means one less place for IT to remember to update. SCIM works alongside single sign-on with the same identity providers.

Getting set up

Single sign-on and SCIM are configured with our team rather than switched on from a settings page, so we can match them to how your identity provider is set up and test everything before your team relies on it.

Talk to us

To turn on single sign-on or SCIM for your team, reach out at [email protected] and tell us which identity provider you use. We’ll walk you through it and get it configured with you.

Frequently asked questions

Does Wrenbase support single sign-on?
Yes. Wrenbase supports the standard single sign-on protocols, SAML 2.0 and OpenID Connect (OIDC), so it works with the identity provider you already run, including Okta, Microsoft Entra ID, Google Workspace, OneLogin, JumpCloud, and Ping Identity.
Can Wrenbase keep our team roster in sync with our directory?
Yes, through SCIM. With SCIM connected, accounts in Wrenbase follow your directory automatically: when someone joins their account is created, when their role changes it updates, and when they leave their access is removed without anyone doing it by hand.
How do I turn on single sign-on for my team?
Single sign-on and SCIM are configured with the Wrenbase team rather than switched on from a settings page, so they can match your identity provider and test everything first. Reach out at [email protected] and tell them which identity provider you use.