GITKRAKEN Security controls

Enterprise-Grade Security for All Dev teams

Fragmented access controls, scattered data policies, and inconsistent authentication slow teams down while increasing risk. GitKraken provides centralized governance so your developers maintain velocity while your organization stays secure and compliant.
Start your free trial

Security Controls Without Productivity Penalties

Centralized Policy Configuration
Configure settings in a single interface that applies across all GitKraken products.
Configure settings in a single interface that applies across all GitKraken products.
Organization & License Management
Add users, assign roles, organize teams, and manage licenses on gitkraken.dev
Add users, assign roles, organize teams, and manage licenses on gitkraken.dev
SSO Authentication
Integrate with any SAML 2.0 provider and enforce all email domain users to login via SSO.
Integrate with any SAML 2.0 provider and enforce all email domain users to login via SSO.
AI Feature Control
Control AI features organization-wide with granular, provider-specific settings.
Control AI features organization-wide with granular, provider-specific settings.

Security Controls That Scale with Your Organization

Centralized Security & Configuration

Configure all security and user provisioning settings on gitkraken.dev.

  • Manage SSO connections, AI provider access, and user provisioning.
  • Settings propagate to users on all GitKraken tools including GitKraken Desktop, GitLens, CLI, and browser extension
  • Changes take effect immediately for all organization members

SOC 2 Type II Compliant

GitKraken maintains SOC 2 Type II certification through an independent third-party.

  • Annual audits verify data security policies and system access controls
  • Request reports and view security documentation on the GitKraken Trust Center.

SAML 2.0 Single Sign-On

Connect your organization’s identity provider to ensure all users are following your authentication requirements.

  • Compatible with any identity provider that supports SAML 2.0 protocol including Azure Entra ID, Okta, Google Identity Platform, and Ping Identity
  • Business and Enterprise plans support multiple domains within one organization
  • Domain control can require all users to login with SSO and be part of your organization to use GitKraken
  • Once SSO is configured, admins can see all members of their domain and add them to GitKraken as needed

AI Feature & Provider Management

Control which AI features and providers your organization can access.

  • Configure access to specific AI providers and models including OpenAI, Anthropic, Google, Azure, and others
  • Set organization-wide API keys to enforce usage through your accounts
  • Configure custom endpoints for self-hosted or private AI infrastructure

License & User Management

Manage users, teams, and licenses from a single centralized admin interface.

  • View current license utilization and available seats
  • Review and accept requests for access
  • Organize users into teams for Workspace access control
  • Multi-select users and teams to take bulk actions

Security controls Apply Wherever your team works

GitKraken Desktop
Security policies configured in gitkraken.dev apply automatically to GitKraken Desktop installations across your organization.
GitLens for IDEs
SSO authentication and AI provider restrictions enforce consistently within the VS Code extension.
GitKraken CLI
Command-line users authenticate through your organization’s configured SSO and inherit AI feature settings.
Identity Providers
Compatible with Azure Entra ID, Okta, Google Identity Platform, Ping Identity, and any SAML 2.0 provider.

Ready to centralize your Security Controls?

Advanced security controls are included with GitKraken Advanced, Business, and Enterprise Plans
See All Available Plans
Visit Trust Center

This is just one pillar of our DevEx platform

Explore other GitKraken tools that help devs and dev leaders to Git efficiently and intelligently, so they can focus on what matters most.
Automations
AutomationsIncrease consistency across teams
Go To Automations →
Cloud Patches
Cloud PatchesShare early, merge swiftly
Go To Cloud Patches →
Codemaps
CodemapsVisualize your code
Go To Codemaps →
Code Suggest
Code SuggestFaster reviews, fewer restrictions
Go To Code Suggest →
Launchpad
LaunchpadFOne view, zero distractions
Go To Launchpad →
Security Controls
Security ControlsEnsure team security & compliance
Go To Security Controls →
Insights
InsightsBuild smarter, ship faster
Go To Insights →
Merge Tool
Merge ToolMerge conflicts, disarmed
Go To Merge Tools →

Frequently Asked Questions

Yes, GitKraken supports SAML 2.0 single sign-on and works with any SAML 2.0 compatible identity provider including Azure Entra ID, Okta, Google Identity Platform, and Ping Identity. SSO is available for GitKraken Advanced, Business, and Enterprise plans. Once configured, users authenticate through your organization’s IdP instead of separate credentials. Learn more about configuring SSO.
Yes, GitKraken integrates with self-hosted Git platforms including GitHub Enterprise Server, GitLab Self-Managed, Bitbucket Data Center, and Azure DevOps Server. Security Controls and SSO configurations apply consistently across all these integrations. Issue tracker integrations include Jira Data Center and Trello.

For Cloud Patches specifically, yes. Organizations can configure GitKraken to store Cloud Patches on their own AWS S3 bucket instead of GitKraken-managed storage when company policies require internal storage. This requires an AWS account, S3 bucket, and AWS credentials. All Cloud Patches remain encrypted regardless of storage location and access is controlled by repository permissions. See Security Controls documentation for setup instructions.

Compare all features and pricing on the pricing page. Each GitKraken plan includes different levels of security features and control. For example, single sign-on is available on an Advanced plan but multi-domain requires a Business or Advanced plan. AI security controls are available on Advanced or above. Note: On-Premise deployments have different capabilities and are sold separately from cloud subscriptions.

Yes, administrators can control AI features at both the feature level and provider level from Security Controls in gitkraken.dev. You can enable or disable all AI features organization-wide, block specific AI providers, enforce the use of your organization’s API keys, and configure custom endpoints for self-hosted AI infrastructure. This requires a GitKraken Business or Enterprise plan. Supported providers include OpenAI, Anthropic, Google, Azure, GitHub Copilot, and others.

Yes, GitKraken On-Premise Self-Hosted Server operates entirely within your internal network without external internet requirements. This option includes a license server with LDAP support and is designed for secure or restricted environments. AI features can connect to your internal LLM endpoints including Azure OpenAI, Anthropic, or local models like Ollama. On-Premise is sold separately from cloud subscriptions.

GitKraken maintains SOC 2 Type II compliance. The platform provides audit logs, data encryption, role-based access controls, and configurable security policies to help organizations meet their compliance requirements. Detailed security documentation, compliance reports, and audit information are available at the GitKraken Trust Center. For specific compliance questions, contact the customer success team.