ScoreReview.uk
Identity

One identity provider. Every workspace. Zero shadow access.

SAML 2.0, OIDC and SCIM 2.0 wired directly into your IdP. Hire, promote and offboard from Okta or Entra and ScoreReview updates within seconds — with a full audit trail.

Enable SSO Book a demo
SAML 2.0 + OIDC SCIM 2.0 lifecycle Just-in-time provisioning IdP group → role mapping
Identity · live signal
IdPs tested
12
Okta · Entra · Google
Provision lag
<30s
SCIM push
Role scopes
48
Per-brand, per-feature
Audit retention
7y
Immutable log
Verified & audit-logged
12
IdPs tested
<30s
Provision lag
48
Role scopes
7y
Audit retention
Capabilities

Everything you need, animated into one workflow.

SAML 2.0 & OIDC

Pre-tested against Okta, Microsoft Entra ID, JumpCloud, Google Workspace, OneLogin and Auth0.

Learn more

SCIM 2.0 lifecycle

Create on hire, update on role change, deprovision on offboard — fully automated and reversible.

Learn more

Just-in-time access

First-time IdP users land in the right workspace with the right scoped role on first login.

Learn more

Group → role mapping

Map IdP groups to platform roles down to per-brand and per-feature permissions.

Learn more

Session governance

Force re-auth, idle timeout and IP allow-lists configured per workspace.

Learn more

Immutable audit log

Every login, role change and SCIM event recorded for 7 years with SIEM export.

Learn more
Live preview

Watch lifecycle events in real time.

Each tier represents a permission boundary — provisioning, role, scope and audit. When your IdP pushes a change, all four light up within seconds.

Client Confirmed
Matched against engagement records
L4
Invitation Verified
Submitted via tokenised invite
L3
Email Verified
Confirmed via secure email loop
L2
Unverified
Open submission, no source proof
L1
Roll out in four steps

From metadata exchange to enforced enrollment.

1

Exchange metadata

Upload IdP metadata or use our pre-built Okta / Entra apps.

2

Map groups

Pick which IdP groups become Admin, Brand Manager, Analyst or Viewer.

3

Enable SCIM

Generate a SCIM token and let your IdP push the directory.

4

Enforce

Disable password fallback and require SSO for the whole workspace.

Comparison

Enterprise identity, not an upsell tax.

SSO and SCIM are included on every Business and Enterprise plan.

CapabilityScoreReviewTrustpilotYotpo
SAML 2.0 included
SCIM 2.0 included
OIDC support
Per-brand role scopes
Session governance
Audit log export
What teams ship with SSO

The most common identity workflows our customers automate.

  • Auto-grant analyst access to every newly onboarded brand
  • Deprovision contractors the moment they leave the IdP group
  • Force SSO-only and disable password fallback per workspace
  • Route SOC team alerts on any privileged role grant
  • Restrict admin access to corporate IP ranges and approved devices
  • Export audit events to Splunk, Datadog or your SIEM of choice
Identity FAQ

What IT and Security ask before turning on SSO.

Any SAML 2.0 or OIDC compliant provider. We maintain prebuilt apps for Okta, Entra ID, Google Workspace, JumpCloud, OneLogin and Auth0.

Ready when you are

Wire ScoreReview into your IdP today.

Our Solutions Engineering team configures the first IdP with you, live.

Enable SSO Book a demo
4.9 / 5 SOC 2 + GDPR 2,800+ firms