Enable single sign-on (SSO) for increased account security.
Single sign-on (SSO) provides additional account security by allowing company administrators to require the use of an identity provider when logging into PlanetScale. Users only need to sign in once with a single set of credentials (i.e. password and email) to access all of their tools and applications upon joining the company.
Furthermore, SSO allows an administrator to revoke someone’s access to all tools and applications from a single place when they leave a team or the company.
SSO is available as an add-on for our Scaler plan and included in our Team and Enterprise plans.
Enable SSO for your organization
Contact our sales team to get SSO enabled for your organization.
When SSO is set up for your organization, all non-admin members are removed from the organization. Each organization member must re-authenticate using SSO before they're automatically added back to the organization.
Organization administrators always remain in the organization, so they can configure SSO without losing access to the organization.
After SSO has been enabled for your account, you can configure it under your PlanetScale organization settings:
Organization administrators can enable, configure, and disable SSO for all members of your organization.
Users can create multiple PlanetScale organizations (i.e. work, personal, etc.), using the same email address, but that email address can only be associated with one SSO-enabled organization.
When SSO is disabled for an organization, users can login with the password they initially set for their PlanetScale account. If they don't know their password, users can go through the password reset flow to regain access to their account.
Should a user lose access to the email address associated with that organization, they'll also lose access to their account after SSO is disabled.