Identity Management
SSO & Role-Based Access
Manage access to the TrustGate dashboard using your existing Identity Provider (Okta, Azure AD, Google Workspace).
SAML 2.0 Configuration
TrustGate acts as a Service Provider (SP). You will need to provide your IdP's Metadata URL.
ACS URL (Callback)
https://api.trustgate.ai/auth/saml/callbackEntity ID
urn:amazon:cognito:sp:trustgate-prodGroup Mapping
Automatically assign TrustGate roles based on your IdP groups.
IdP GroupTG Role
"tg-admins"Owner
"tg-developers"Editor
"tg-auditors"Viewer
Default Roles
| Role | Permissions |
|---|---|
| Owner | Full access. Can manage billing, licensing, and other admins. |
| Admin | Can create Agents, manage Policies, and rotate keys. Cannot manage billing. |
| Developer | Can view API keys and logs. Cannot delete Agents or change global policies. |
| Auditor | Read-only access to Audit Logs and Compliance Reports. |