Which identity providers are supported?

AEO Platform supports any SAML 2.0-compliant identity provider. This includes Okta, Azure Active Directory, Google Workspace, OneLogin, Ping Identity, Auth0, and JumpCloud. If your IdP supports SAML 2.0, it will work with the platform. SCIM provisioning is supported for Okta and Azure AD, with additional providers on the roadmap.

Can I enforce SSO-only login and disable password authentication?

Yes. Once SSO is configured and tested, you can enable "SSO-only" mode which disables email/password login for all users in the organisation. A break-glass admin account with password access is maintained for emergency scenarios where the IdP is unavailable.

Is SSO available on all plans?

SSO and SAML integration are available on Enterprise plans. Growth and Standard plans use email/password authentication with optional two-factor authentication.

Feature

enterprise

SSO & SAML

Enterprise single sign-on with SAML 2.0 so your team accesses AEO Platform through your existing identity provider.

Quick answer

For organisations with centralised identity management, logging into yet another SaaS tool with a separate password is a security risk and a usability friction. SSO & SAML integration connects AEO Platform to your existing identity provider — Okta, Azure AD, Google Workspace, OneLogin, or any SAML 2.0-compliant IdP — so your team authenticates using the same credentials and policies they use for every other tool.

How it works

SSO & SAML in detail

Configuration requires exchanging metadata between AEO Platform and your identity provider. In the platform's admin panel, you download the Service Provider metadata (entity ID, ACS URL, and signing certificate) and upload it to your IdP. You then copy the IdP metadata (SSO URL, entity ID, and signing certificate) back into the platform. The entire process typically takes 15 to 30 minutes for an IT administrator familiar with SAML configuration.

Once configured, users are redirected to your IdP login page when they access AEO Platform. After authentication, they are returned to the platform with an active session. The platform maps IdP user attributes (email, name, groups) to platform roles and permissions, so you can use IdP group membership to control who has admin access, who has editor access, and who has read-only access.

SCIM provisioning is configured separately and automates user lifecycle management. When a user is added to the designated group in your IdP, a platform account is automatically created with the appropriate role. When the user is removed from the group, their account is deactivated. SCIM sync runs in near real-time, ensuring the platform's user roster always matches your IdP.

Benefits

Why SSO & SAML matters

Authenticate via your existing IdP — Okta, Azure AD, Google Workspace, or any SAML 2.0 provider

Inherit organisational security policies including MFA and conditional access

Automatically deprovision access when employees leave the organisation

Map IdP groups to platform roles for centralised permission management

Automate user provisioning and deprovisioning with SCIM

Use cases

When to use SSO & SAML

An enterprise IT team configures SAML SSO with Okta so that AEO Platform access is governed by the same policies as all other SaaS tools.

A security officer enables SCIM provisioning to ensure that offboarded employees lose platform access within minutes.

A marketing operations manager maps IdP groups to platform roles so that the content team gets editor access while leadership gets read-only dashboards.

FAQ

SSO & SAML FAQ

Related features

REST API & Webhooks

reporting

Programmatic access to all platform data and real-time event notifications for any system in your stack.

Shareable Dashboards

reporting

Generate public links to real-time dashboards so stakeholders see always-current AI visibility data without needing a login.

Team Workspaces

enterprise

Manage multiple brands, clients, and teams under one account with per-workspace billing, permissions, and reporting.

View all features

Get started

Start with the pages and proof that AI can actually use

Run the free audit to see what blocks AI from citing your site. Use the trial when you need ongoing monitoring, attribution, prompt discovery, and team workflows after the first fixes are live.

Run free audit Start free trial