One gateway, wired into the stack you already run
Wardengate is the choke point — not another silo. Identity, secrets, approvals, and evidence flow through the tools your security and platform teams already operate.
Identity
Okta · Entra
Directory
AD · SCIM
SIEM
Splunk · Elastic
Approvals
Slack · ServiceNow
Secrets
Vault · AWS SM
Automation
Terraform · CI
Your stack stays put. Wardengate sits in the middle and makes it actually connect.
Identity providers
Federate human and workload identities. MFA freshness and group membership flow into policy decisions.
- Okta
- Azure Entra ID
- Google Workspace
- Ping
- Auth0
- Keycloak
Directories
Sync users, groups, and attributes from the directories your org already trusts.
- Active Directory
- LDAP
- SCIM 2.0
- JumpCloud
SIEM & observability
Stream session metadata, approvals, and policy events into your detection stack.
- Splunk
- Elastic
- Datadog
- Sumo Logic
- Chronicle
- Syslog
Approvals & ITSM
Route JIT requests to Slack, Teams, or ITSM queues. Decisions land in the audit ledger.
- Slack
- Microsoft Teams
- Jira Service Management
- ServiceNow
- PagerDuty
Secrets
Broker credentials at connect time from the vaults you already operate.
- HashiCorp Vault
- AWS Secrets Manager
- GCP Secret Manager
- Azure Key Vault
Automation
Provision targets, policies, and entitlements as code alongside your infra pipelines.
- Terraform provider
- Pulumi
- GitHub Actions
- GitLab CI
- Argo
How teams wire it
Integrate in the order that reduces risk fastest
Most production deployments follow the same sequence: federate identity, stream evidence, then automate provisioning. The docs walk through each step with working examples.
Identity provider setup guide →Identity-first onboarding
Connect your IdP before you onboard targets. Group membership and MFA freshness flow directly into policy — no duplicate user stores.
Evidence where analysts work
Session metadata, approvals, and policy decisions stream to your SIEM or data lake in formats your detection rules already understand.
Approvals in existing channels
JIT requests land in Slack, Teams, or ServiceNow queues. Approvers never need a second portal to grant access.
Need a custom integration?
We have built connectors for stacks that are not on the list
If your IdP, SIEM, or vault is not listed, reach out — most integrations are configuration and webhook work, not six-month projects.