Platform Administration
NeuralTrust provides enterprise-grade administration features designed for organizations that need centralized identity management, automated user provisioning, and comprehensive security auditing.
Key Features
| Feature | Description | Benefit |
|---|
| Microsoft Entra ID SSO | Single Sign-On with Microsoft corporate credentials | Centralized access control, one less password |
| Generic OIDC SSO | SSO with any OIDC-compliant provider (Okta, Auth0, Google Workspace, etc.) | Flexibility to use your existing identity provider |
| Break the Glass | Emergency password access per SSO provider | Never get locked out during IdP outages |
| Email Domain Verification | DNS-based domain ownership verification | Prevent domain spoofing, secure auto-discovery |
| SCIM Provisioning | Automatic user creation and removal from Microsoft Entra ID | Always in sync with your directory |
| Manual User Sync | On-demand directory synchronization (Entra ID only) | Full control over sync timing |
| Audit Logs | Comprehensive security event logging | SOC2 compliance, incident investigation |
| SIEM Integration | Forward events to your security platform | Centralized monitoring, compliance reporting |
Who Should Use These Features
These features are designed for team administrators who need to:
- Configure corporate single sign-on for their organization
- Automate user onboarding and offboarding
- Monitor security-related activities for compliance
- Enforce security policies across their team
Getting Started
Enterprise features require Owner or Admin role in your NeuralTrust team.
Recommended Setup Order
For the best experience, configure these features in the following order:
- Single Sign-On (SSO) — Choose your identity provider:
- Email Domain Verification — Verify your corporate domains via DNS TXT record
- Break the Glass — Configure emergency access users before enforcing SSO
- SSO Enforcement — Enable to require SSO login for all users
- SCIM Provisioning — Automate user account management (Microsoft Entra ID only)
- Group Mappings — Map identity provider groups to NeuralTrust roles
- Audit Logs — Monitor all security-related activities
Prerequisites
Before configuring enterprise features, ensure you have:
- NeuralTrust Account: Owner or Admin role in your team
- Identity Provider: Administrator access to Microsoft Entra ID or your OIDC provider
- Email Domain: A corporate email domain you control (for domain verification)
Role Permissions
| Feature | Owner | Admin | Member |
|---|
| Configure Microsoft Entra ID SSO | ✓ | ✗ | ✗ |
| Configure Generic OIDC SSO | ✓ | ✗ | ✗ |
| Enable/Disable SSO Enforcement | ✓ | ✗ | ✗ |
| Manage Break Glass Users | ✓ | ✗ | ✗ |
| Manage Email Domains | ✓ | ✓ | ✗ |
| Verify Email Domains | ✓ | ✓ | ✗ |
| Generate/Revoke SCIM tokens | ✓ | ✗ | ✗ |
| Configure Group Mappings | ✓ | ✓ | ✗ |
| Run User Sync | ✓ | ✓ | ✗ |
| View Audit Logs | ✓ | ✓ | ✗ |
Support
If you encounter issues configuring enterprise features, contact our support team at [email protected].
Enterprise Security: NeuralTrust’s enterprise features provide the security controls and compliance capabilities your organization needs while maintaining a seamless user experience.
