Getting Started
-
- Set up and populate your SaaS stack
- Integrate your ERP & accounting software with Sastrify
- Uncover SaaS Usage and Shadow IT with SSO Discovery Integrations
- Admin Setup Guide: Sastrify Browser Extension for Google Chrome
- Admin Setup Guide: Sastrify Browser Extension for Microsoft Edge
- Manual Installation Guide: Sastrify Browser Extension for Google Chrome
- Manual Installation Guide: Sastrify Browser Extension for Microsoft Edge
- Set renewal dates & reminders
- Assign and modify tool owners
- Upload your SaaS documents into Sastrify
- Sastrify App Support: Assistance at your fingertip
- Sastrify's commitment to security and privacy standards
- Getting started guide: Fast and easy way to self-onboard your Sastrify platform
-
- Google Workspace SSO integration for subscription discovery
- Enhance organizational SaaS management with HRIS Integrations
- Summary tab & Contract AI for storing your subscription details
- Use discovered page to detect new subscriptions
- Tools and Spend Importer: Easily upload and visualize data in Sastrify
- Align vendor names using the Tool Matching feature
- Add Sastrify App to your Slack workspace
- Manually add a new subscription on the go
- How to bulk upload your invoices
- Forward your SaaS documents via email
- Change notification preferences
- A quick glance at your stack using the overview page
- Manage activities and collaborate using custom tasks
- Task Automation: Streamline the creation of routine tasks
- Sunset or delete inactive subscriptions
-
- Get expert procurement support for new purchases and renewals
- Create procurement support using Sastrify - Jira Integration
- Scope of service: Custom benchmarking & contract review
- Scope of service: Negotiation & renewal support
- Scope of service: Custom SaaS Optimization Advisory
- Purchase your SaaS through the SastriMarket
- Control your cloud costs with SastriCloud
-
- Usage Analytics: Full visibility into usage and cost optimization
- Okta Discovery and Usage Analytics Integration Guide
- How to integrate Pleo with Sastrify
- Spend Import: Validate and fine-tune your imported spend data
- How to connect Microsoft Dynamics 365
- How to connect Netsuite
- How to connect Quickbooks
- Export spend data from Candis to Sastrify
- Export spend data from Spendesk to Sastrify
- Export spend data from Pleo to Sastrify
- Export spend data from Moss to Sastrify
- Export spend data from DATEV to Sastrify
- Export spend data from Ramp to Sastrify
-
- Configure and manage your authentication settings
- Understanding user roles and permissions
- Microsoft SSO Login Configuration Guide
- Okta SSO Login Configuration Guide
- JumpCloud SSO Login Configuration Guide
- Cisco Duo SSO Login Configuration Guide
- OneLogin SSO Login Configuration Guide
- Having trouble logging in?
-
- ERP & Accounting Integration FAQs
- SSO Discovery Integration FAQs
- Browser Extension FAQs
- HRIS Integration FAQs
- Usage Analytics FAQs
- Contract AI & Subscription Details FAQs
- Tools and Spend Importer FAQs
- Invoices FAQs
- Achieved & Potential Savings FAQs
- Form component guide for Sastrify form builder
- What is SaaS and Sastrify's scope of work?
- Who can invite a new user?
- Who receives the renewal alerts or reminders?
- How does Sastrify work with currencies?
- Is the spend data from accounting export always up-to-date?
- How to work with benchmark prices
- When and how to involve Sastrify in a contract evaluation or negotiation?
- How does Sastrify interact with SaaS vendors?
- How do you handle confidentiality clauses in vendor contracts?
- Does Sastrify handle SaaS contract termination?
- Why is contract data essential for benchmarking and negotiation support?
Uncover SaaS Usage and Shadow IT with SSO Discovery Integrations Print
Modified on: Thu, 10 Jul, 2025 at 5:03 PM
Sastrify’s SSO Discovery feature helps you gain full visibility into all SaaS tools used or accessed across your organization—whether officially adopted or accessed independently by employees.
By integrating with major SSO providers, Sastrify passively monitors sign-in activity to detect any SaaS tool accessed through your company’s SSO. This allows you to uncover not only officially sanctioned tools but also those that may be flying under the radar—offering a comprehensive view of your organization’s software landscape.
Once detected, new tools appear under the Discovered tab in your Tool Stack. From there, you can easily review and categorize each one—either confirming them as “in use” or archiving them if they’re not relevant to your current subscriptions. This continuous detection ensures your stack stays accurate and up-to-date, empowering IT and compliance teams with real-time insights into tool usage and potential shadow IT.
IN THIS ARTICLE
- How to set up Tool Discovery via SSO (Single Sign-On) integrations
- Which SSO providers do we integrate with?
- Data Retrieved by SSO Discovery Integration
- Frequently Asked Questions
How to set up Tool Discovery via SSO (Single Sign-On) integrations
Note: To set up the usage analytics integration, users must have admin-level permissions in both the selected SSO provider and in Sastrify, as specific access rights are required for the integration to function correctly.
Tool Discovery via SSO (Single Sign-On) integrations can be accessed from Integrations > Discovery.
To set up a new integration:
Click the Connect button next to your preferred SSO provider.
A setup page will open with configuration details specific to that provider.
For Google Workspace, Microsoft, and Okta: Toggle the Usage Analytics switch to Active to enable tracking of usage patterns for tools accessed via your SSO.
Follow the technical instructions provided to complete the connection:
Google Workspace and Microsoft: You'll be prompted to sign in and redirected to the respective admin setup page. During setup, the admin simply needs to accept the authorization prompt. Once this is done, the integration setup is complete.
Okta: Enter your OAuth 2.0 app credentials. Refer to this guide for a step-by-step walkthrough.
JumpCloud: Provide your API key, which can be retrieved from your JumpCloud API Settings, to complete the connection.
Please note that the SSO integration discovery method does not collect spend data because SSO by its nature does not handle spend information. It will only discover the newly discovered subscriptions and list them on the Discovered page without any specific details.
Which SSO providers do we integrate with?
Data Retrieved by SSO Discovery Integration
The integration will track only the following data points:
- User ID and email
- Login activity
- Activity date (login date)
- App used or accessed
While all supported SSO providers track the same core data, the way this information is retrieved may vary depending on the provider.
For example:
Google Workspace uses Activity Reports and Customer Usage Reports to capture login activity across apps.
Microsoft pulls sign-in data for two types of logins from Microsoft Entra: interactive sign-ins and federated sign-ins.
Despite differences in implementation, the outcome is the same: Sastrify identifies SaaS products used or accessed by employees by analyzing login activity through your company’s SSO provider.
Frequently Asked Questions
Please refer to the SSO Discovery Integration FAQ page for a complete list of frequently asked questions
Did you find it helpful? Yes No
Send feedback