Connect your IdP to Entitle | Entitle

Your identity provider (IdP) already holds the most accurate record of who works at your organization. Connecting it to Entitle lets Entitle use that record to manage access, instead of asking admins to recreate and maintain it separately.

Why connect your IdP

It becomes the source of truth for users and groups. Once connected, Entitle imports your users, groups, and (optionally) manager relationships directly from your IdP. You don't manage a second, parallel list of employees inside Entitle.

It keeps access data current automatically. As people join, move teams, or leave the company in your IdP, those changes flow through to Entitle. This reduces the manual work of adding, updating, or removing users, and lowers the risk of orphaned accounts or outdated permissions.

It powers approval workflows and access reviews. Entitle uses the groups and manager data it syncs from your IdP to route access requests to the right approvers and to populate access review campaigns, so the right people are asked to approve or revoke access.

It enables IdP-initiated login. Connecting your IdP also lets users sign in to Entitle directly from their IdP application portal, rather than only through a separate Entitle login page.

For provider-specific setup steps, see the Entitle documentation for your IdP.

©2003-2026 BeyondTrust Corporation. All Rights Reserved. Other trademarks identified on this page are owned by their respective owners. BeyondTrust is not a chartered bank or trust company, or depository institution. It is not authorized to accept deposits or trust accounts and is not licensed or regulated by any state or federal banking authority.