SSO & identity
Enterprise-grade identity management — Okta, Microsoft Entra ID, SAML 2.0, and SCIM. Users sign in through your identity provider while Draft & Goal stays in sync with your directory automatically.
Security teams get SSO enforcement and audit-ready access logs. IT gets automated provisioning — new joiners are onboarded and leavers are deprovisioned without manual intervention.
What it does.
Enforced SSO
Require all users to authenticate through your IdP. Password-based login can be disabled entirely for enterprise accounts.
Automated provisioning
SCIM keeps Draft & Goal in sync with your directory. New users get the right roles on day one; departed users lose access instantly.
Group-based role mapping
Map IdP groups to Draft & Goal roles — Admin, Builder, Runner — so access follows your org chart without manual assignment.
Audit-ready access logs
Every login, role change, and deprovisioning event is logged with a timestamp and IdP correlation ID for compliance and SOC 2 audits.
Automated user onboarding
Triggers on every new user event from Okta. Maps the user's IdP group to a Draft & Goal role, sends a welcome Slack message, and provisions the account — all in under 30 seconds.
What connects.
Connect in minutes.
Authorize
Share your SAML metadata or Okta tenant URL — we handle the IdP configuration end to end.
Configure
Map IdP groups to Draft & Goal roles and set SCIM provisioning rules.
Automate
SSO and SCIM run continuously in the background. No workflow trigger needed — identity stays in sync automatically.
Show us the workflow.
We'll show you the 10x.
Bring the marketing workflow that eats your week. We'll build it live, with your data and your models, in 30 minutes.