Skip to content

Latest commit

 

History

History
172 lines (153 loc) · 6.64 KB

index.md

File metadata and controls

172 lines (153 loc) · 6.64 KB
title order
Wall of Shame
1
<script type="text/javascript"> document.addEventListener("DOMContentLoaded", function(event) { setTimeout(function() { setInitialSortByColumnNo(2); setInitialSortByColumnNo(2); }, 200); }); </script>
Why does this exist? The **SSO Tax** stands for the practice of SaaS vendors to upcharge for Single-Sign-On ("SSO").

As a consequence, features like SSO, and more specifically OpenID Connect or SAML, are often restricted to enterprise-level subscriptions. This pricing strategy makes it prohibitively expensive for non-enterprise businesses to centrally manage their employees' access. Find out more about the why.

The following list includes vendors that have SSO locked up in an subscription tier that is more than 10% more expensive than the standard price.

Imagine buying a car and the manufacturer asks for an extra payment to unlock 100% of the braking power. Not offering security features if they already exist in your product means a vendor doesn’t care about your security. Our aim is to spotlight vendors who overcharge for security features, in hopes of instigating a change in the industry.

What apps do I have? Organizations often use more apps than their internal IT departments are aware of. Employees may start using new apps when they see a benefit, which can lead to sensitive data ending up with unapproved vendors.

You can't protect what you can't see. To discover all applications used in your organization, try the free Shadow IT Scanner{:target="blank"} powered by AccessOwl.

{{ page.title }}

{% include sharing_links.html %}

{% for vendor in site.vendors_bad %} {% if vendor.sso_pricing == "unknown" or vendor.base_pricing == "unknown" %} {% assign sso_increase = "unknown" %} {% else %} {% assign sso_increase = vendor.sso_pricing | minus: vendor.base_pricing | times: 1.0 | divided_by: vendor.base_pricing | times: 100 | round %} {% endif %} {% endfor %}
Vendor Increase Paid SSO Base Pricing Paid SSO Pricing Pricing Scheme Free SSO Providers Notes Source Updated
{% include vendor_logo.html vendor_url=vendor.vendor_url vendor_name=vendor.name %} {{ vendor.name }} {% if sso_increase == "unknown" %}
??? Pricing is not transparent and unknown. Often vendors ask you to call them to get a quote.
{% else %} {{ sso_increase }}% {% endif %} 		{% if vendor.base_pricing == "unknown" %} ??? {% else %} {{ vendor.base_pricing | format: vendor.currency}} {% endif %} {% if vendor.sso_pricing == "unknown" %} ??? {% else %} {{ vendor.sso_pricing | format: vendor.currency}} {% endif %} {{ vendor.pricing_scheme }} {% include vendor_free_sso_providers.html providers=vendor.free_sso_providers %}
{{ vendor.notes | truncate: 25 }} {{ vendor.notes }}
{% include vendor_pricing_sources.html pricing_sources=vendor.pricing_sources %} {{ vendor.updated_at }} {% include vendor_edit_link.html vendor_path=vendor.path vendor_name=vendor.name %}

{% include vendor_table_footer.html %}

FAQs

This doesn't scale linearly for number of seats! Correct. Since we don't know who's reading the page, it's easiest to just assume a team with no volume discount.
How is base pricing determined? We disregard free tier pricing, as we can assume these aren't intended for long term business customer use. We also disregard "single person" pricing, under the assumption that we're looking on behalf of a team of 5, 10, or more people.
What does "Quote" mean in the Source column? If a vendor doesn't list pricing but a user has submitted pricing based on a quote, it can be included here. If a vendor feels that their actual pricing is inaccurately reflected by this quote, feel free open an issue on Github.
I'm a vendor and this data is wrong! Please feel free to submit a PR to this page.
I'm a vendor and this doesn't reflect the value-add of our Enterprise tier! That's the point. Decouple your security features from your value-added services. They should be priced separately.
But it costs money to provide SAML support, so we can't offer it for free! While I'd like people to really consider it a bare minimum feature for business SaaS, I'm OK with it costing a little extra to cover maintenance costs. If your SSO support is a 10% price hike, you're not on this list. But these percentage increases are not maintenance costs, they're revenue generation because you know your customers have no good options.
Does it make sense to list vendors here when they offer free Google SSO? Yes, it's about all vendors that lock up any SSO. Because SSO should be available for everybody not just for Google users.