Getting Started
-
- Integrating HRIS to Enrich Identities & Insights
- Admin Guide: Deploying the Sastrify Chrome Extension
- Admin Guide: Deploying the Sastrify Microsoft Edge Extension
- Manual Installation Guide: Sastrify Chrome Browser Extension
- Manual Installation Guide: Sastrify Edge Browser Extension
- Setting renewal dates & reminders
- Assigning & Modifying Tool Owners
- Uploading & Managing Your SaaS Documents in Sastrify
- Sastrify App Support: Get Help & Give Feedback
- Sastrify's commitment to security and privacy standards
- Uncover SaaS Usage and Shadow IT with Identity Provider (IdP) Discovery
-
- Capturing Subscription Details with Contract AI
- Adding a New Subscription Manually
- Slack Integration: Bringing Sastrify into Your Internal Communication
- How to bulk upload your invoices
- Automating Document Uploads via Email Forwarding
- Managing Your Notification Preferences
- Tools and Spend Importer: Bulk Upload & Visualization
- Align vendor names using the Tool Matching feature
- Sunset or delete inactive subscriptions
-
- Workflows: Automate procurement processes with consistency
- Requests: Streamline procurement process and internal approval
- Get expert procurement support for new purchases and renewals
- How to submit and track Procurement Requests via Jira Integration
- Scope of service: Custom benchmarking & contract review
- Scope of service: Negotiation & renewal support
- Scope of service: Custom SaaS Optimization Advisory
- Purchase your SaaS through the SastriMarket
-
- Connecting Your ERP & Accounting Software
- Spend Import: Validate and fine-tune your imported spend data
- Export spend data from Candis to Sastrify
- Export spend data from Spendesk to Sastrify
- Export spend data from Pleo to Sastrify
- Export spend data from Moss to Sastrify
- Export spend data from DATEV to Sastrify
- Export spend data from Ramp to Sastrify
-
- Configure and manage your authentication settings
- Understanding user roles and permissions
- Configuring Microsoft SSO Authentication for Sastrify
- Configuring Okta SSO Authentication for Sastrify
- Configuring JumpCloud SSO Authentication for Sastrify
- Configuring Cisco Duo SSO Authentication for Sastrify
- Configuring OneLogin SSO Authentication for Sastrify
- Configuring Cloudflare SSO Authentication for Sastrify
- Having trouble logging in?
-
- Okta Discovery and Usage Analytics Integration Guide
- Accounting & ERP: Connecting NetSuite to Sastrify
- Accounting & ERP: How to connect Quickbooks
- Accounting & ERP: How to connect Microsoft Dynamics 365
- Accounting & ERP: How to connect Workday ERP
- Accounting & ERP: How to integrate Pleo with Sastrify
- HRIS: Connecting Officient to Sastrify
-
- ERP & Accounting Integration FAQs
- SSO / IDP Discovery Integration FAQs
- Browser Extension FAQs
- HRIS Integration FAQs
- Usage Analytics FAQs
- Contract AI & Subscription Details FAQs
- Tools and Spend Importer FAQs
- Invoices FAQs
- Achieved Savings FAQs
- Form component guide for Sastrify form builder
- What is SaaS and Sastrify's scope of work?
- Who can invite a new user?
- Who receives the renewal alerts or reminders?
- How does Sastrify work with currencies?
- Is the spend data from accounting export always up-to-date?
- How to work with benchmark prices
- When and how to involve Sastrify in a contract evaluation or negotiation?
- How does Sastrify interact with SaaS vendors?
- How do you handle confidentiality clauses in vendor contracts?
- Why is contract data essential for benchmarking and negotiation support?
Uncover SaaS Usage and Shadow IT with Identity Provider (IdP) Discovery Print
Modified on: Thu, 19 Feb, 2026 at 6:13 PM
Sastrify’s IdP Discovery feature provides organization-wide visibility into the SaaS tools your employees access daily. By monitoring sign-in activity through your Identity Provider (IdP), the platform identifies both sanctioned applications and independent "shadow" tools, ensuring your software stack is always accurate and up-to-date.
Identity Provider (IdP) Discovery analyzes your IdP logs (Google Workspace, Microsoft Entra ID, Okta, etc.) to detect when a user authenticates into any SaaS applications using company credentials.
Once detected, new tools appear in the Discovered tab within your Tool Stack. From there, you can quickly review and categorize each one—marking it as “In Use” or archiving it if it’s not relevant to your current subscriptions. Continuous detection keeps your stack accurate and up to date, giving IT and compliance teams real-time visibility into tool usage and potential shadow IT.
Setting Up Discovery via your Identity Provider (IdP)
Requirement: To enable this integration, you must have Admin permissions in both Sastrify and your selected IdP.
Navigate to Integrations > Discovery & Usage.
Locate your provider (Google Workspace, Microsoft Entra ID, Okta, or JumpCloud) and click Connect.
- Toggle "Usage Analytics". Ensure the switch is set to Active to enable tracking of login patterns.
- Authenticate:
- Google/Microsoft: Sign in and accept the authorization prompt.
Okta: Enter your OAuth 2.0 app credentials. See our Okta Step-by-Step Guide for details.
Note on Spend: IdP Discovery does not collect spend data. It focuses purely on "Who is using what." To see the financial impact of discovered tools, we recommend connecting your ERP/Accounting software.Data Retrieved by IdP Discovery
To protect privacy while providing deep insights, Sastrify only retrieves the following data points related to the login event:
User Identity: ID and email address.
Login Activity: Success/Failure status and timestamps.
Application Context: The name and URL of the tool being accessed.
Managing Your Discoveries
Once connected, you can then take action from the Discovered tab of your tool stack:
- Review detected tools.
- Decide whether to move tools to the In Use tab or mark them as Inactive.
- Assign tool owners before moving tools to the In Use tab.
- Search and filter the list for easier review.
Frequently Asked Questions
Please refer to the Identity Provider (IdP) Discovery FAQ page for a complete list of frequently asked questions
Did you find it helpful? Yes No
Send feedback