Organizations & SSO
Run multiple teams under one organization, verify your domain, enable single sign-on and automated provisioning, and manage roles and audit logs.
What an organization adds
An organization sits above teams. It's for companies that need central control: several teams under one roof, a verified email domain, single sign-on, custom roles, and an audit trail of who did what. If you only need one team, you can stay with a team — you don't need an organization.
Create an organization
The create-organization wizard collects what's needed to set up centralized billing and identity.
- 1
Choose seat count
Pick how many seats your organization starts with across its teams.
- 2
Organization details
Enter the organization name, legal name, and your primary email domain.
- 3
Billing and invoicing
Provide billing contact, address, and any invoice preferences such as a purchase-order number or payment terms.
- 4
Invite admins
Add the people who will help run the organization. You can transfer an existing personal or team license into the organization during setup.
Verify your domain
Domain verification proves you control your company's email domain. It's required before you can turn on single sign-on or automatically place people who sign in with a company email into your organization.
- 1
Add your domain
Enter the domain you want to verify in the organization's domain settings.
- 2
Prove ownership
Follow the on-screen instructions to add the verification record (for example, a DNS record). ClinicaLister checks it and marks the domain verified.
Single sign-on (SSO)
Let members sign in with your company identity provider instead of a separate ClinicaLister password. ClinicaLister supports SAML 2.0 and OpenID Connect (OIDC), which work with providers such as Okta, Microsoft Entra ID (Azure AD), and Google Workspace.
- Connect your identity provider with its metadata, then map its fields (email, name, department) to ClinicaLister.
- Optionally require SSO so members must sign in through your provider.
- Step-by-step setup guides for common providers are available in the SSO settings.
Automated provisioning (SCIM)
With SCIM, ClinicaLister stays in sync with your identity provider automatically: when you add, update, or deactivate someone in your provider, their ClinicaLister access follows. SCIM provisioning is managed at the organization level, so seats are granted and released centrally rather than person by person.
Roles and permissions
Beyond the basic owner / admin / member roles, organization admins can define custom roles with specific permissions — for example, who can manage teams, manage licenses, view billing, configure SSO, or manage domains. Assign roles to members to give each person exactly the access they need.
Audit logs
Organizations keep an activity record of important actions — members added or removed, role changes, license and seat changes, SSO updates, and domain verifications. Filter by person, action, or date to review what happened and when.
Where to go next
- Teams & Seats — manage the teams inside your organization.
- Account & Security — two-factor authentication, trusted devices, and data rights for every member.
- Billing & Documents — organization invoices, purchase orders, and contracts.