SecurePoint USA
SecurePoint USAEnterprise Compliance
Request Demo
Back to Documentation

Authentication and SSO

Configure identity providers, SSO flows, and role-based access control for secure, compliant access.

SSO Setup

  • Register your SecurePoint callback URL in the identity provider.
  • Configure required claims (email and organization context fields).
  • Map IdP groups to SecurePoint roles before broad rollout.
  • Test both initial sign-in and forced re-authentication scenarios.
Callback URL
https://www.securepointusa.com/auth/callback

Role-Based Access

RoleTypical Scope
AdminSite configuration, users, and policy controls.
ComplianceCase review, adjudication, and evidence workflows.
HostVisitor workflows and host-focused operational actions.

Keep role grants minimal and add elevated roles only where workflow ownership requires it.

Session Security

Validate session timeouts and re-authentication behavior for sensitive actions. Compliance and admin workflows should be tested with MFA enabled where policy requires it.

Example Claims Payload

{
  "sub": "user-uuid",
  "email": "jane@example.com",
  "organization_id": "org-uuid",
  "role": "admin"
}

Never store service-role credentials in browser code. Keep privileged secrets on server-side routes only.

Need implementation support?

Our team can provide a guided SSO rollout and RBAC workshop tailored to your environment.

Contact the team