Skip to main content
Enterprise · SSO & Identity

Your team already knows
how to sign in.

DecisionBox plugs into the identity provider your company already uses — Okta, Google Workspace, Entra ID, or any major OIDC provider. No new passwords, no user migration, no IT tickets to raise.

Talk to UsSee the docs
What your team gets

Three outcomes your IT lead cares about

Zero new passwords

Your team signs in with the credentials they already use every day. Nothing new to remember, nothing new for IT to support.

Auto-provisioning, auto-offboarding

New employees get the right access the moment they land in your IdP. When they leave, access disappears automatically — no manual cleanup, no stale accounts.

Compliance-ready from day one

Centralized access control and audit attribution satisfy SOC 2, HIPAA, and GDPR requirements out of the box. Your security team has probably already approved it.

The sign-in experience

From your IdP to the right access, automatically

What your IdP knows about Jane
NameJane Smith
Emailjane@acme.co
TeamEngineering
AccessAdmin group
ProviderOkta
One click
What she gets in DecisionBox
Sign-inAlready in
RoleAdmin
ProjectsEngineering
OrgAcme Production
Setup timeZero

Configured once by your admin. Every sign-in after that resolves to the right role, team, and organization — automatically.

One button, one click — branded to your workspace, powered by whichever identity provider your company uses.

Ready to plug DecisionBox into your IdP?
Talk to Us
Works with

Every major identity provider

The fine print

Built for the way your org already runs

Any identity provider

Auth0, Okta, Entra ID, Google Workspace, Keycloak, Cognito, or any OIDC-compliant IdP. Drop in the issuer URL and it just works.

Role-based access control

Viewer, member, and admin roles enforced per-endpoint. No secondary permission store to maintain, no second place to grant access.

Multi-tenant isolation

Each organization only ever sees its own projects, insights, and discovery runs. Enforced at the query layer, not the UI.

Team-based role syncing

Map your IdP groups to DecisionBox roles. When someone moves teams, their access follows automatically — no manual updates.

For security teams

Already approved in your security stack.

Standard OIDC, standard JWT validation against your IdP's JWKS endpoint, standard role enforcement per route. Every query is scoped by organization at the data layer. If your security team has approved your IdP, they've approved DecisionBox Enterprise.

More enterprise features
Data Governance
Control exactly what the AI can see, per role and per tenant.
Audit Logging
Every action attributed to a user, organization, and timestamp.
Slack Integration
Discovery notifications and slash commands where your team works.

Ready to roll this out to your org?

Talk to us about Enterprise — we'll walk through your identity setup, data governance needs, and compliance requirements.

Talk to UsAll enterprise features