[PB-49692] As a CE user, I should be able to use SSO

kryptonian · February 19, 2023, 8:57am

Q1. What is the problem that you are trying to solve?
I’m trying to make it clear that SSO is NOT a pro feature, but rather basic functionality of an app.

Q2 - Who is impacted?
Everyone not using PRO version

Q3 - Why is it important and/or urgent?
It’s very important

Q4 - What is your proposed solution? (optional)

I would add support for OpenID Connect and include it in community version.

Q5. Community support

People can vote for this idea to show traction:

Must have: this is critical for me to have this
Should have: this is important for me to have this
Could have: this could be nice to have
Won’t have: we should not schedule this (explain why)

0 voters

AnatomicJC · February 19, 2023, 11:45am

Hi,

I added the poll

Kofl · December 23, 2023, 5:00pm

Would be really great. And could integrate it with my Keycloak. Its doing SSO for all my self-hosted apps.

Termindiego25 · December 24, 2023, 10:08am

Hello @Kofl and welcome to the forum!
This is already possible with the OpenID option added recently, but SSO is a PRO feature so you will need to ask for the PRO version or wait until the team release the feature to CE version

kryptonian · December 24, 2023, 10:21am

Thus making it NOT AVAILABLE.

OpenID and OpenID Connect I don’t think are the same thing and SSO shouldn’t be considered a PRO feature but rather basic features of an app.

AlexCherrypi · September 7, 2025, 9:53pm

So this still isn’t available in CE, right?

gyaresu · September 8, 2025, 1:40am

Hi Alex.

Not currently, no.

The reference for what’s included in CE/PRO.
https://www.passbolt.com/pricing/pro

Pro features:

Single Sign On (SSO) with Microsoft			
Single Sign On (SSO) with Google			
Single Sign On (SSO) with OpenID			
Single Sign On (SSO) with AD FS

Cheers
Gareth

AlexCherrypi · September 29, 2025, 8:44am

It’s just a shame we can’t even use OIDC in the CE

(Thanks for the quick reply btw)

Pranay · December 7, 2025, 5:03am

Or, for the SSO feature, Passbolt should charge a small fee—around $50 per month—to enable it.

anothertealtiger · January 26, 2026, 6:33pm

Signed up just to vote and express my interest in this being a feature. We’re currently using Vaultwarden for my selfhosted community. I don’t think we’ll switch to Passbolt CE until SSO through OpenID is made accessible. Not that our community is particularly valuable or anything, but this is no longer a feature that’s only used by corporations.

Related: https://sso.tax

izl · January 31, 2026, 8:09am

bump.. I mean come on… I was so disappointed as I was getting ready to switch from cloud to a self hosted password manager when I realized I couldn’t use my self hosted keycloak sso…… any password I can think of is deemed mediocre according to the passbolt password grader – and I’m supposed to trust the rest of my household to have decent passwords? lol

izl · February 18, 2026, 5:54am

Bump because openID should be open, and basic sso is better than a weak human master pass; a user account limit should be enough to have it in the CE build without harming pro subscriber counts

darkponay · February 18, 2026, 7:49pm

Hello just tried Passbolt CE and, it looks great !

But without SSO (i’m using Keycloak) it will be a no-go for me. Sad.

salga · March 4, 2026, 9:52am

I’ll add my 2 cents to this request: while I understand the legitimate need of Passbolt to build a viable business, I believe that adding SSO support to the CE edition while limiting its use to “family & friends” scenarios (for example, max. 10 users) would not jeopardize the company’s viability while sustaining a thriving community. Please Passbolt, consider this option seriously: SSO is necessary for any serious password management solution, not only for professionals, but also for families. Thanks!