Why does this exist?
Single sign-on (SSO) is a mechanism for outsourcing the authentication for your website (or other product) to a third party identity provider, such as Google, Facebook, Okta, PingFederate, etc.
In this context, SSO refers to a SaaS or similar vendor allowing a business client to manage user accounts via the client’s own identity provider, without having to rely on the vendor to provide strong authentication with audit logs, and with the ability to create and delete user accounts centrally, for all users, across all software in use by that client.
For organizations with more than a handful of employees, this feature is critical for IT and Security teams to be able to effectively manage user accounts across dozens or hundreds of vendors, many of which don’t support features like TOTP 2FA or U2F. In the event that an employee leaves the company, it allows the IT team to immediately disable their access to all applications, rather than logging into 100 different user management portals.
In short: SSO is a core security requirement for any company with more than five employees.
SaaS vendors appear not to have received this message, however. SSO is often only available as part of “Enterprise” pricing, which assumes either a huge number of users (minimum seat count) or is force-bundled with other “Enterprise” features which may have no value to the company using the software.
If companies claim to “take your security seriously”, then SSO should be available as a feature that is either:
- part of the core product, or
- an optional paid extra for a reasonable delta, or
- attached to a price tier, but with a reasonably small gap between the non-SSO tier and SSO tiers.
Many vendors charge 2x, 3x, or 4x the base product pricing for access to SSO, which disincentivizes its use and encourages poor security practices.
|Vendor||Base Pricing||SSO Pricing||% Increase||Source||Date Updated|
|Airtable||$10 per u/m||Call Us!||100%+||🔗||2018-10-17|
|Atlassian (Jira Cloud)||$7 per u/m||$10 per u/m1||42%||🔗||2018-10-22|
|Box||$5 per u/m||$15 per u/m||200%||🔗||2018-10-17|
|CloudSploit||$36 pcm||$99 pcm||175%||🔗||2018-10-20|
|Databricks||$0.20 per DBU||$0.35 per DBU||75%||🔗||2018-10-22|
|Dialpad||$15 per u/m||$35 per u/m||133%||🔗||2018-10-22|
|DocuSign||$25 per u/m||$50 per u/m||100%||🔗 Quote||2018-10-17|
|Dropbox||$15 per u/m||$25 per u/m||67%||🔗||2018-10-17|
|Expensify||$5 per u/m||$9 per u/m||80%||🔗||2018-10-17|
|GitHub||$9 per u/m||$21 per u/m||133%||🔗||2018-10-19|
|GitLab Hosted||$4 per u/m||$19 per u/m||375%||🔗||2018-10-21|
|GitLab On-Prem||$4 per u/m||$4 per u/m2||0% 🎉||🔗||2018-10-22|
|Hubspot Marketing||$46 per month||$2944 per month||6300%||🔗||2018-11-23|
|Intercom||$136||$202||49%||🔗 & 🔗||2018-10-20|
|Lucidchart||$7 per u/m||Call Us!||???||🔗||2018-10-17|
|Mattermost||$39 per u/m||$80 per u/m||105%||🔗||2018-12-10|
|NationBuilder||$29 per month||Call Us! (over $199/month)||586%++3||🔗||2019-02-09|
|Netlify||$9 per u/m||Call Us!||???||🔗||2018-10-20|
|New Relic Infrastructure||$0.60 - $7.20 per host-month4||$1.20 - $14.40 per host-month||100%||🔗||2018-10-18|
|OpsGenie||$9 per u/m||$19 per u/m||111%||🔗||2018-11-08|
|PagerDuty||$9 per u/m||$39 per u/m||333%||🔗||2018-10-17|
|PagerTree||$10 per u/m||$15 per u/m||50%||🔗||2018-11-08|
|Quip||$10 per u/m||$25 per u/m||150%||🔗||2019-02-15|
|RingCentral||$25 per u/m||$35 per u/m||40%||🔗||2018-10-17|
|Rocket.Chat Cloud||$2 per u/m||$4 per u/m||100%||🔗||2018-10-22|
|Sentry||$26 for 100K events||$80 for 100K events||208%||🔗||2018-10-20|
|Slack||$6.67 per u/m||$12.50 per u/m||87%||🔗||2018-10-17|
|SmartSheet||$25 per u/m||Call us!||???||🔗||2018-10-22|
|Snyk||$23.96 per u/m||$39.98 per u/m||67%||🔗||2018-10-22|
|Stack Overflow||$5 per u/m||$11 per u/m||120%||🔗||2019-06-24|
|SumoLogic||$90 per GB/m||$150 per GB/m5||67%||🔗||2018-10-19|
|Trello||$10 per u/m||$21 per u/m||110%||🔗||2018-10-17|
|VictorOps||$29 per u/m||$49 per u/m||69%||🔗||2018-10-17|
|Zendesk Support||$19 per u/m||$49 per u/m||157%||🔗||2018-10-19|
This doesn’t scale linearly for number of seats!
Correct. Since we don’t know who’s reading the page, it’s easiest to just assume a team with no volume discount.
How is base pricing determined?
We disregard free tier pricing, as we can assume these aren’t intended for long term business customer use. We also disregard “single person” pricing, under the assumption that we’re looking on behalf of a team of 5, 10, or more people.
What does “Call Us!” mean?
Many vendors do not list pricing for Enterprise-tier pricing. To avoid needing to call all of them to get this data, “Call Us!” may be listed as a placeholder. If you have numbers, please share them.
What does “Quote” mean in the Source column?
If a vendor doesn’t list pricing but a user has submitted pricing based on a quote, it can be included here. If a vendor feels that their actual pricing is inaccurately reflected by this quote, feel free to let me know and I’ll update the page.
I’m a vendor and this data is wrong!
Please feel free to submit a PR to this page, or reach out at sso @ myGitHubUsername dotcom. I only want this data to be accurate.
I’m a vendor and this doesn’t reflect the value-add of our Enterprise tier!
That’s the point. Decouple your security features from your value-added services. They should be priced separately.
But it costs money to provide SAML support, so we can’t offer it for free!
While I’d like people to really consider it a bare minimum feature for business SaaS, I’m OK with it costing a little extra to cover maintenance costs. If your SSO support is a 10% price hike, you’re not on this list. But these percentage increases are not maintenance costs, they’re revenue generation because you know your customers have no good options.
Hard to compare since Access seems to cover all Atlassian products, so should get cheaper per seat as more products are used - but that doesn’t help people only using Jira. (Jira was chosen as probably the most common Atlassian product.) ↩
On-prem includes “site-wide SSO” in its basic tier which provides many of the core benefits of SSO, with additional SSO options in the next tier up. ↩
To upgrade one plan level is represented by this price increase, but to get single sign-on, you actually have to go up another plan, which is ‘Call Us’ pricing. ↩
Pricing varies by host size. The SSO cost increase does not. ↩
SumoLogic will add SSO as a line item without requiring a full upgrade to the next plan, which should be cheaper for almost everyone – but we can’t list that here because we don’t know how the price is calculated. ↩
Base pricing is extremely variable. SSO is the greater of $15,000 or a 30% surcharge, so could be anywhere from 30% to ‘000s% ↩