SSO (SAML) setup

Okta, Azure AD, Google Workspace. Connect your IdP in 5 minutes.

4 min read•Updated April 13, 2026

SAML SSO is available on Scale. Setup takes about 5 minutes end-to-end.

Supported IdPs

Okta, Azure AD, Google Workspace, OneLogin, JumpCloud, Duo. Any IdP with SAML 2.0 works. These are just the ones we've pre-built config for.

Setup

Settings → Security → SSO → Enable SAML. Omesta shows you the SP metadata (ACS URL, entity ID, certificate). Paste that into your IdP. Your IdP gives you IdP metadata in return. Paste that into Omesta. Test connection. Done.

Domain claiming

Once SAML is enabled, you can claim your email domain (e.g., omestasystems.com). After claiming, anyone trying to sign up with that domain is forced through SSO. They can't create a password-based account on your domain.

SCIM provisioning

Auto-provision and deprovision users from your IdP. Available on Scale as an add-on. Supports Okta SCIM 2.0 out of the box; other IdPs via generic SCIM.

Role-based access control

Data encryption overview

Get started

Didn't answer your question?

Email support@omestasystems.com. A human replies in under 2 hours.

Contact support More Security & access articles

Omesta