BTL · Authentication & SSO
Single sign-on. Zero friction.
Plug into your identity provider in under an hour. SAML, OIDC, and managed Cognito user pools. No separate auth service to stand up.
01. Providers
Identity providers supported.
Bring your own IdP or use our managed Cognito pool. Either way, federation and audit are configured the same.
AWS Cognito
Managed user pools and federationSAML 2.0
Okta, OneLogin, Azure AD, ADFSOAuth 2.0 / OIDC
Google Workspace, custom IdPsMagic Links
Passwordless email-based auth02. Capabilities
Hardening, on by default.
MFA available
TOTP via Cognito user pools, enabled per engagement policy.
Session controls
Configurable timeouts, IP allowlists, device binding.
JIT provisioning
Auto-create users from SAML/OIDC claims on first sign-in.
Audit logging
Every login, role change, and permission grant logged.
Get started
Ship auth in a day.
We help you wire up your IdP and map claims. Included in onboarding.