Single Sign-On (SSO) for authentication to Snyk

Feature availability SSO is available only for Enterprise plans.

For more information, see Plans and pricing.

Overview of SSO

You can take advantage of your company's existing identity management system and have employees sign in to Snyk using their corporate identity. This makes provisioning Snyk to users easier. It also allows for deeper integration for Group and Organization membership, role-based access, and more.

Snyk can integrate with any SAML-based and OpenID Connect (OIDC)-based SSO, as well as ADFS. You can also use your Enterprise Identity Provider for SSO, including Entra ID (formerly Azure AD) and Google G Suite. Read more about SAML in the Auth0 documentation.

User authentication and provisioning for SSO

With SSO configured, users are provisioned with a new Snyk account when they first sign on through SSO, even if they previously created their own account.

The sign-on process includes these steps:

  1. When users select SSO from to log in, they are redirected to and authenticated by the identity provider you requested.

  2. The identity provider communicates this authentication to Snyk servers, sending relevant data to Snyk to create each user.

  3. Snyk checks the directory for that user.

  4. If the user is already configured, Snyk enables the appropriate access. For a new user, Snyk adds the user to the directory and then redirects the user to with the appropriate access.

Additional resource for SSO

Training: SSO, authentication and user provisioning

Last updated

More information

Snyk privacy policy

© 2023 Snyk Limited | All product and company names and logos are trademarks of their respective owners.