> ## Documentation Index
> Fetch the complete documentation index at: https://docs.vendexlabs.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Sign in & SSO

> Sign in with Google or Microsoft, and enterprise single sign-on options.

VendexLabs supports modern sign-in so your team can get in with the identity they already use, and so IT keeps control of access.

## Sign-in options

<CardGroup cols={2}>
  <Card title="Google" icon="google">
    Sign in with your Google (Google Workspace) account via OIDC.
  </Card>

  <Card title="Microsoft" icon="microsoft">
    Sign in with your Microsoft Entra ID (Azure AD) account via OIDC.
  </Card>
</CardGroup>

Authentication is handled through Amazon Cognito, with Google and Microsoft available as identity providers. Microsoft sign-in works across Entra tenants, so most organizations can use their existing Microsoft accounts without special configuration.

<Note>
  For Microsoft sign-in, your account's email must be a verified, organization-managed address — a signal that your tenant owns the domain. This keeps sign-in tied to accounts your IT actually controls.
</Note>

## Enterprise SSO

Need SAML or a dedicated SSO integration for your identity provider? **Enterprise single sign-on is available by request.** Contact [security@vendexlabs.com](mailto:security@vendexlabs.com) with your identity provider and requirements and we'll walk through options.

## Access after sign-in

Signing in identifies you; what you can *do* is governed by your role in each organization you belong to. New people are added by an admin or owner. See [Organizations & members](/account/organizations-and-members) for roles and permissions.

<Warning>
  VendexLabs never asks for your identity-provider password. You authenticate directly with Google or Microsoft, and VendexLabs only receives a verified token.
</Warning>
