SSO JIT Provisioning overview¶

SSO Just-in-Time (JIT) provisioning is a user provisioning mechanism that automates account creation and updates during the login process. When a user authenticates through an identity provider (IdP), their details are sent to the service provider (SP), allowing seamless, on-demand provisioning and role assignment without prior manual setup.

Lightrun supports seamless user management through SSO-based Just-in-Time (JIT) provisioning using the SAML and OIDC protocols, enabling organizations to streamline account creation and access control. The following guides provide step-by-step instructions for configuring JIT provisioning with industry-leading identity providers:

• SSO JIT Provisioning with Okta: Learn how to integrate Okta with Lightrun for automated user account creation and role assignment during login. This guide details the required configurations in both Okta and the Lightrun Management Portal. For more information, see SSO JIT with Okta.

• SSO JIT Provisioning with Microsoft Entra ID: Explore the setup process for using Microsoft Entra ID (formerly Azure AD) as your identity provider. This documentation highlights the specific configurations needed for JIT provisioning in environments utilizing Microsoft Entra ID. For more information, see SSO JIT with Entra ID.

• SSO JIT Provisioning with Ping Identity: Follow this guide to enable JIT provisioning with Ping Identity. The documentation explains how to configure Ping as an SSO identity provider and establish smooth integration with Lightrun. or more information, see SSO JIT with Ping Identity.