ResourcesSecurity and privacy

Single Sign-On (SSO)

Let your team access Vapi through your identity provider using SAML or OIDC.

SSO is an enterprise-only feature. To enable it, talk to the Vapi sales team.

Overview

With SSO, your team signs in to Vapi through your existing identity provider (IdP) instead of separate Vapi credentials, giving IT centralized control over access.

Vapi works with any IdP that supports SAML 2.0 or OpenID Connect (OIDC), including Google Workspace, Microsoft Entra ID (formerly Azure AD), and Okta.

Setup

Once SSO is enabled for your organization, Vapi provides your IT administrator with a secure link to configure your provider’s credentials in the SSO admin panel.

Access management

Vapi does not support SCIM provisioning. When a user signs up, they create their own Vapi account; your IT administrator then invites them into your organization. Permissions are managed within Vapi using Role-Based Access Control (RBAC) at the application layer.

Need help?

To enable SSO or ask about configuration, talk to the Vapi sales team.