Single Sign-On

Single Sign-On with SAML2 & Azure AD / Entra ID

For CISOs and ISOs bringing compliance tooling under the same identity controls as the rest of the enterprise — no separate password to govern.
For
CISO
ISO
SAML2
ISO 27001:2022 Annex A 5.16
ISO 27001:2022 Annex A 5.17
Book a demo Talk to a Priverion expert
The challenge

Every standalone login is access your identity team can't see

Every standalone login is an account your identity team can't see. When a compliance platform keeps its own usernames and passwords, joiners and leavers fall out of sync with the corporate directory, and offboarding leaves orphaned access that surfaces in the next access review.

Auditors expect access to your privacy and InfoSec tooling to follow the same identity policy as everything else: central provisioning, enforced MFA, and a clean logout. A tool that can't speak SAML2 or connect to Entra ID becomes the exception you have to explain — and exceptions are findings.

What you can do

What you can do with enterprise SSO

  • Sign in through your corporate IdP via SAML2 or Azure Entra ID.
  • Configure the service provider with the OneLogin builder — ACS endpoints and SP metadata.
  • Connect Azure AD / Entra ID using tenant-specific authorize and token URLs.
  • Set the IdP entity ID, SSO URL and SLO URL so single logout works end to end.
  • Upload your X.509 certificate to verify signed SAML assertions.
  • Choose the SSO type per company — SAML2 or OAuth2 — with an Entra ID enable flag.
Business outcomes

What it delivers to your program

  • No separate credentials to govern — access follows your directory, so joiners and leavers stay in sync.
  • MFA and conditional access apply automatically — your IdP's policy now covers the compliance platform too.
  • Single logout closes the session everywhere — no lingering authenticated tab after offboarding.
  • Cleaner access reviews — one identity source to evidence, fewer exceptions to explain to auditors.
  • A fallback that keeps you working — local Passport authentication stays available if the IdP is unreachable.
Built for compliance

Built for compliance

Supports the access-control evidence SOC 2 reviewers look for, and helps you demonstrate that compliance tooling sits inside your standard identity governance.

What DPMS doesMaps toHow
Federates login to your enterprise IdPISO 27001:2022 Annex A 5.16Identity management via SAML2 / Entra ID, no local accounts to provision
Verifies signed assertionsISO 27001:2022 Annex A 5.17X.509 certificate upload validates SAML assertion signatures
Standards-based federationSAML2SP configured with the OneLogin toolkit — entity ID, ACS, metadata
Terminates sessions on logoutISO 27001:2022 Annex A 8.5SLO (single logout) URL propagates logout to the IdP
See how this maps to your obligations — book a 30-minute demo.
Book a demo
Why Priverion

Why Priverion

Unlike general-purpose GRC tools that bolt federation on as an afterthought, DPMS handles single logout and X.509-signed assertions natively. SAML2 and Azure Entra ID OAuth2 are both driven from a single configurable IAM settings document, with the SSO type chosen per company — so a multi-entity group can run different identity setups under one platform. The result is privacy and InfoSec tooling governed by the same identity controls as the rest of your estate.

FAQ

Questions CISOs ask before a demo

Does DPMS support SAML2 and Azure Entra ID?
Yes. It supports SAML2, built with the OneLogin toolkit, and OAuth2 against Azure AD / Entra ID. You choose the SSO type per company.
What do I configure on my side?
The IdP entity ID, SSO URL, SLO URL, and your X.509 signing certificate. For Entra ID, you add tenant-specific authorize and token URLs.
Does it handle single logout?
Yes. Configure your SLO URL, and logging out of DPMS propagates to the IdP, closing the session rather than leaving it open.
What if our IdP is unavailable?
DPMS retains local Passport authentication as a fallback, so administrators are not locked out during an IdP outage.
Related features

Explore related capabilities

Enterprise Platform Security & AI Backbone
Multi-tenant, SSO/SCIM, RBAC, audit, AI and translation built in
Multi-Tenant Architecture & Company Data Isolation
Hard-isolate every company's data with automatic per-tenant collection scoping.
SCIM2 User & Group Provisioning
Auto-provision users and map IdP groups to roles without manual onboarding.
Role- & Audience-Based Access Control
Restrict who sees which records by role and audience down to each object type.
Browse all features

Ready to put DPMS behind your IdP?

Book a 30-minute demo focused on SSO with SAML2 and Azure Entra ID, and see the IAM configuration end to end.
Book a demo
Your trusted partner for a smarter, more efficient approach to data privacy management.
Product
Priverion Platform System Status
about us
About Priverion Careers
© 2024 Priverion
Imprint Privacy Notice Terms of Service Refund Policy
OneTrust, TrustArc, Drata, Vanta, BigID, DataGuard, Kertos, Securiti and Sprinto are trademarks of their respective owners. Priverion Solutions AG is an independent Swiss company and is not affiliated with, sponsored by, or endorsed by any of these companies. References to these products are made under the fair-use exception for comparative advertising (Swiss UWG Arts. 3(1)(a)(b)(e); EU Directive 2006/114/EC Art. 4) for the sole purpose of informing prospective customers. Methodology and sources for comparative claims are disclosed on each page that contains them; see also our comparative advertising policy. To challenge a specific claim, write to [email protected].