SAN FRANCISCO — SSOJet today announced enterprise SSO and Model Context Protocol (MCP) authentication support, addressing what security professionals have identified as one of the most significant gaps in the current wave of AI agent deployments: the absence of enterprise identity controls over agent-to-application connections.
The Model Context Protocol, originally open-sourced by Anthropic and now governed by the Linux Foundation’s Agentic AI Foundation, has rapidly become the standard for connecting AI agents to enterprise tools. With over 97 million monthly SDK downloads and more than 10,000 published MCP servers, the protocol has achieved broad adoption across development environments from Claude Desktop to VS Code to ChatGPT. But enterprise security teams have flagged a critical concern: existing identity infrastructure has no native visibility into AI agent connections established through MCP.
The Shadow IT Problem in AI Agent Access
When an employee uses an AI assistant to connect to corporate tools via MCP, the enterprise identity provider sees the user authenticate to the application but has no visibility into the agent connection being established alongside it. From the identity provider’s perspective, the AI agent’s access is invisible — creating what security professionals classify as Shadow IT. Enterprise policy, audit controls, and conditional access rules do not extend to these connections.
Security researchers at Pynt have estimated that deploying ten MCP plugins without proper authentication controls creates a 92% probability of exploitation. As enterprises move AI agent deployments from experimental to production, closing this authentication gap has become a procurement-gating requirement.
Extending Enterprise Identity to AI Agents
SSOJet’s MCP authentication support routes AI agent access requests through the organization’s existing identity provider. Security teams can apply the same controls used for human users — conditional access, step-up authentication, session management, and audit logging — to AI agent connections. The platform supports the full MCP authorization stack: OAuth 2.1 with PKCE, Dynamic Client Registration for automatic client onboarding, Protected Resource Metadata discovery (RFC 9728), and the Cross App Access protocol that provides enterprise IdPs visibility into agent-to-application relationships.
For machine-to-machine authentication flows, SSOJet supports token exchange patterns that enable AI agents to securely access downstream services on behalf of authenticated users, maintaining the chain of trust that enterprise security architectures require.
Enterprise SSO Without Infrastructure Replacement
Beyond MCP, SSOJet’s core platform provides enterprise SSO as a layer that operates on top of existing authentication systems. B2B SaaS companies using Auth0, Firebase, Amazon Cognito, ForgeRock, or custom auth can add enterprise SSO capabilities — supporting 25+ identity providers including Microsoft Entra ID, Okta, Google Workspace, Ping Identity, OneLogin, JumpCloud, CyberArk, SailPoint, and Keycloak — without migrating users, replacing auth stacks, or disrupting current workflows.
Protocol support covers SAML 2.0 and OpenID Connect with enterprise-grade features: assertion encryption, authentication request signing, single logout, front- and back-channel logout, and SCIM 2.0 directory synchronization. The platform is built on a zero-knowledge architecture with audit logging, RBAC, MFA integration, and just-in-time provisioning. Compliance documentation covers SOC 2, ISO 27001, GDPR, HIPAA, and CCPA.
AI-Native Developer Experience
SSOJet’s AI-powered implementation assistant scans existing codebases, generates framework-specific integration code, and provides real-time troubleshooting. Documentation is structured for AI code editors such as Cursor, Windsurf, and GitHub Copilot. An open-source LLM integration guide and agent-ready skill repository are available on GitHub, enabling AI coding assistants to implement SSOJet authentication correctly across multiple environments.
Native SDKs cover Next.js, React, Vue, Angular, Node.js, Go, .NET, Java Spring Boot, Python, PHP, Laravel, iOS, and Android. Connection-based pricing starts at $99 per month for two SSO connections with unlimited users.
Availability
SSOJet’s Enterprise SSO and MCP authentication support is available now with a 30-day free trial. Documentation and open-source resources are available at ssojet.com and github.com/ssojet.
About SSOJet
SSOJet provides a turnkey enterprise Single Sign-On infrastructure for B2B SaaS companies. The platform enables companies to add enterprise authentication capabilities—including SAML 2.0, OIDC, SCIM directory sync, and Model Context Protocol support—on top of existing auth stacks, without migration or replacement. SSOJet supports 25+ identity providers and serves companies across the B2B SaaS ecosystem, selling to mid-market and enterprise customers with mandatory SSO requirements. The company is headquartered in San Francisco.
Media Contact: press@ssojet.com
Website: www.ssojet.com
Documentation: docs.ssojet.com
