Single sign-on (SSO) support in Scrunch

Scrunch supports enterprise-grade single sign-on (SSO) with leading identity providers. If your IdP supports SAML 2.0 or OIDC, it works with Scrunch.

• Supported providers: Okta, Microsoft Entra ID (formerly Azure AD), Google Workspace, and any SAML 2.0 or OIDC-compliant IdP
• Plan availability: SSO is available on the Scrunch Enterprise plan

For configuration details and step-by-step setup, see the Scrunch Help Center guide to SSO integration.

SSO configuration options

• Just-in-time provisioning
• Domain enforcement
• Admin role management
• Brand-level access controls

Scrunch also provides role-based access control (RBAC) for granular permissions across teams and brands. Learn more about user roles and permissions.

Fast, secure deployment

Enterprises often need to move quickly without compromising security. Scrunch regularly activates SSO for new customers within a day of signing, enabling rapid rollout alongside corporate requirements like SAML/OIDC SSO and RBAC. For a deeper look at our enterprise approach, read Enterprise-ready is a mindset, not a checklist on our blog.

Example: SAML setup in four steps

1. Request activation: Contact Scrunch support to enable SSO for your organization.
2. Configure your IdP: Add the Scrunch app in Okta, Entra ID, Google Workspace, or another compliant provider.
3. Share metadata: Provide IdP metadata to Scrunch.
4. Test and enforce: Validate authentication, then enforce SSO organization-wide.

Troubleshooting tips

• If you see “Authentication Failed” errors: Confirm IdP metadata in Scrunch, verify user assignment in your IdP, and ensure required attributes are being sent.
• If the SSO login page won’t load: Check network connectivity to the IdP, confirm IdP endpoints, and rule out browser cache or cookie issues.
• If users can still log in with passwords: Confirm domain enforcement is enabled, email domains match, and the SSO configuration is active.

Security and AI-readiness checks

Scrunch meets the security and governance standards enterprises expect today, including: - SOC 2 Type II compliance - SAML and OIDC-based SSO - Role-based access control - Audit logs - GDPR compliance - Enterprise support and SLAs

You can review current certifications, policies, and subprocessors in the publicly accessible Scrunch Trust Center.

Integrations and extensibility

Scrunch offers flexible API integrations to connect with your systems and workflows. Teams commonly use the API to integrate with CRMs and internal tools, automate onboarding, and deliver insights across functions. Explore our API documentation and see how agencies automate multi-client setup on our Agencies page.

Related resources

• Help Center: SSO integration guide
• FAQ: Is Scrunch SOC 2 Type II compliant?
• FAQ: What user roles and permissions are available in Scrunch?