SAML/SSO for Incontrol

Mathieu · January 14, 2021, 4:14am

We have an internal requirement to use only Cloud applications with SSO for security purpose.
SSO provide a simple and secure way to access to the admin console on SaaS service.
For now, you have only for InControl a federation with Google.
We need an open and validated federation with ADFS / Okta / ADP / …
All new services offer this option (Webex, Microsoft, Salesforce, AWS, Surveymonkey, Github, …) including your competitor on the SDWAN market !

Topher · January 31, 2024, 4:41pm

We have another customer request for Okta integration with InControl2, so bringing this topic to light again.

mystery · January 31, 2024, 6:49pm

i agree with this request, SSO integration is a basic requirement these days. many companies cannot use things that do not support SSO.

Noah_Helterbrand · January 31, 2024, 8:49pm

And here’s another vote for this feature.

Maxwell_Paine · February 7, 2024, 9:39pm

Another vote for this feature. Don’t forget about OneLogin!

formanm · July 29, 2024, 5:50am

I need BYO IdP before I can implement InControl for my enterprise. Cradelpoint does this today (7/29/2024) which will be direction I have to go until this is corrected.

Maxwell_Paine · August 29, 2024, 3:21pm

Bumping this topic again.

jneulight · August 31, 2024, 4:44am

+1, this would be useful

jshifletmillimaneb · October 22, 2024, 9:28pm

+1 here as well. Our org really does not want us using cloud services unless they can be implemented with SAML SSO

bryn.loftus · October 22, 2024, 10:25pm

We use some automation to help us use SSO, it has some limitations but it works well…

we have a group in AzureAD/Entra, and an automation that use graph API to read the members of that group and then iterate through the organizations it can access with its IC2 account using the IC2 API and compare the members and add/remove as needed. Then our staff can login with oauth for SSO.

Greg_Nygren · April 21, 2025, 5:31pm

SSO for Entra would be a valuable feature

ChristopherSpitler · April 22, 2025, 12:56am

another +1. peplink ID supports FIDO2 and OIDC it seems, but exposes zero to us to allow our own IdP. this is an absolute nightmare for giving employees/support personnel to client organizations as suspending the user account at the IdP level does nothing to prevent a password login.

i 100% agree that proper SSO needs to exist for IC2 and this is a limiting factor to true enterprise plays for Peplink.

Andrew_Morrell · July 16, 2025, 10:32pm

Another vote for SSO via Azure AD

Dominic_Torchia · July 17, 2025, 1:22pm

cannot understand why this isn’t implemented yet. its makes IC2 basically a non-starter in enterprise environment. +1 Entra ID /Azure AD

selim.tanriverdi · October 19, 2025, 2:25pm

+1 This would be very helpful

ChristopherSpitler · October 21, 2025, 9:10pm

@Keith / @Michael is this something that we can get implemented? Proper SSO interfaces that can be enforced (i.e., a client doesn’t want a fired employee to access things). At a minimum today, we need to be able to disable user/pass authentication and only allow via say Microsoft, Google, etc. with approved domains.

Keith · October 21, 2025, 9:29pm

Yes, this definitely makes sense. @Giedrius will help follow up with engineering. Thanks.

Chee_Keong_Or · October 29, 2025, 2:27am

I am also voting yes.

Colin_Bishop · October 31, 2025, 4:29pm

@Keith do you have a sense of which IdPs may be supported as you review this request? Auth0, Entra, Okta etc?

Giedrius · October 31, 2025, 6:19pm

Hi Colin,

we are reviewing possible options and need a bit more time to do the study and research on our side. Give us some more time before we can get back to you.

G.