name: "windsurf-enterprise-sso" description: | Configure enterprise SSO integration for Windsurf. Activate when users mention "sso configuration", "single sign-on", "enterprise authentication", "saml setup", or "identity provider". Handles enterprise identity integration. Use when working with windsurf enterprise sso functionality. Trigger with phrases like "windsurf enterprise sso", "windsurf sso", "windsurf". allowed-tools: "Read,Write,Edit,Bash(cmd:*)" version: 1.0.0 license: MIT author: "Jeremy Longshore jeremy@intentsolutions.io" compatible-with: claude-code, codex, openclaw tags: [saas, skill-databases, authentication]

Windsurf Enterprise Sso

Overview

This skill enables enterprise Single Sign-On (SSO) integration for Windsurf deployments. It supports SAML 2.0, OIDC/OAuth 2.0, and integration with major identity providers including Okta, Azure AD, and Google Workspace.

Prerequisites

• Windsurf Enterprise subscription
• Organization administrator access
• Identity provider admin access
• Understanding of SAML/OIDC protocols
• Compliance requirements documented
• Certificate management capabilities

Instructions

1. Prepare Identity Provider
2. Configure Windsurf SSO
3. Set Up Certificates
4. Configure Policies
5. Test and Enable

See ${CLAUDE_SKILL_DIR}/references/implementation.md for detailed implementation guide.

Output

• Configured SSO integration
• User attribute mappings
• Group sync configuration
• Audit logging setup

Error Handling

See ${CLAUDE_SKILL_DIR}/references/errors.md for comprehensive error handling.

Examples

See ${CLAUDE_SKILL_DIR}/references/examples.md for detailed examples.

Resources

• Windsurf SSO Guide
• SAML 2.0 Configuration
• OIDC Configuration