Scalekit
Last verified 2026-05-20 · Reviewed by guptadeepak
Editorial verdict
Scalekit is a 2023-vintage entrant in the B2B-SSO-as-a-product segment, sitting alongside WorkOS and SSOJet but with even tighter focus on per-organization pricing for early-stage B2B SaaS. The product is young and the customer base is small, which limits battle-test coverage; pricing and DX are competitive with incumbents in the segment. Worth shortlisting alongside WorkOS and SSOJet for B2B-only SaaS at the early-stage tier.
Last verified by @guptadeepak on 2026-05-20.
At a glance
- Best for
- Early-stage B2B SaaS that needs Enterprise SSO + SCIM at predictable per-org pricing
- Pricing
- per-organization
- Free tier
- 1,000,000 MAU
- Deployment
- cloud-saas
- SOC 2 Type II
- Yes
- Passkeys
- Native
- Self-host
- No
- Open source
- No
Funding & business
- Funding model
- Venture-backed
- Total raised
- $5.5M
- Latest round
- Seed · $5.5M · 2024
- Years in business
- 3 yrs
- Round led by
- Together Fund
- Profitable
- Not disclosed
Investors
Auth stack for AI agents and B2B SaaS, founded by ex-Freshworks engineers; $5.5M seed (2024).
Funding data from primary source. See also the CIAM investor landscape.
Strengths
- B2B SSO + SCIM at WorkOS-like pricing structure but with developer-first DX positioning.
- Generous free auth tier (large MAU allowance) with paid features billed per organization.
- Modern SDKs and idiomatic developer experience across major JS frameworks.
- Tightly scoped product surface, does not try to cover B2C consumer flows that aren't core.
Limitations
- Very young product (founded 2023), small customer base and limited battle-tested coverage.
- Compliance footprint is narrow, SOC 2 Type II only.
- Adaptive MFA, bot defense, and risk decisioning are weaker than incumbents.
- B2C-grade features intentionally absent, pure B2B-first scope.
Capability matrix
Every vendor scored on the same axes. See the methodology for criteria.
| Password authentication | Yes |
|---|---|
| Social login | Yes |
| Magic links | Yes |
| SMS OTP | No |
| Email OTP | Yes |
| TOTP (authenticator app) | Yes |
| Push MFA | No |
| WebAuthn / passkeys | Yes |
| Biometric | Yes |
| Hardware security keys | Yes |
| SAML SSO | Yes |
| OIDC SSO | Yes |
| OAuth 2.0 SSO | Yes |
| Enterprise federation | Yes |
| Passwordless-only flows | Yes |
| Adaptive MFA | No |
| Step-up auth | Partial |
| RBAC | Yes |
|---|---|
| ABAC | No |
| ReBAC | No |
| FGA engine | No |
| API authorization | Yes |
| Fine-grained permissions | Partial |
| Self-service registration | Yes |
|---|---|
| Progressive profiling | No |
| Self-service account | Yes |
| Bulk user import | Yes |
| Admin user search | Yes |
| Custom user metadata | Yes |
| Organizations / tenants | Yes |
| Multi-tenancy | Yes |
| REST API | Yes |
|---|---|
| GraphQL API | No |
| SDKs | js, node, react, next, python, go |
| CLI | Yes |
| Terraform provider | No |
| Local emulator | No |
| Extension model | Webhooks + JWT customization |
| Bot detection | No |
|---|---|
| Breached password detection | Yes |
| Brute-force protection | Yes |
| Anomaly detection | No |
| Log streams | Yes |
| Audit logs | Yes |
| GDPR data export | Yes |
| PII minimization | Partial |
| Post-quantum roadmap | No |
| MCP support | No |
|---|---|
| OAuth 2.1 | Yes |
| Dynamic client registration | Yes |
| Agent vs human token separation | No |
| Web Bot Auth | No |
| SOC 2 Type II | Yes |
|---|---|
| ISO 27001 | No |
| ISO 27018 | No |
| HIPAA | No |
| PCI DSS | No |
| GDPR | Yes |
| CCPA | Yes |
| FedRAMP | No |
| EU data residency | Yes |
| Consent management | No |
|---|---|
| Preference center | No |
| Purpose-specific consent | No |
| Integrates with CMPs | n/a |
Pricing
| 10,000 MAU | $0/mo |
|---|---|
| 100,000 MAU | $99/mo |
| 500,000 MAU | $1,100/mo |
| 1,000,000 MAU | $2,400/mo |
- Free auth tier at high MAU; pay primarily for Enterprise SSO connections per-organization
- Designed to compete with WorkOS and SSOJet on per-org pricing
- SCIM Directory Sync available at standard B2B tier
Estimates use the standard assumptions in our methodology. Always confirm with the vendor.
Best for
- Early-stage B2B SaaS that needs Enterprise SSO + SCIM at predictable per-org pricing
- Teams comparing WorkOS and SSOJet on price
- Apps where the buyer is the IT admin, not the consumer
Not for
- B2C consumer apps
- Workloads requiring HIPAA, FedRAMP, ISO 27001, or PCI DSS
- Mid-to-large enterprise with complex federation requirements
FAQ
- How does Scalekit compare to WorkOS and SSOJet?
- All three target the same B2B-SSO segment. WorkOS is the most mature; SSOJet is mid-maturity with strong DX; Scalekit is the youngest entrant with the most aggressive pricing for early-stage SaaS. For teams choosing in 2026, WorkOS is the lower-risk pick; Scalekit and SSOJet compete on price and DX.
- Does Scalekit support B2C consumer auth?
- Not really, Scalekit is B2B-first by design. For consumer apps, look at Auth0, Stytch, MojoAuth, or Descope.
- What does Scalekit cost at 100 enterprise customers?
- Roughly $1,000–$2,000 per month at standard B2B tier with 100 organizations. Always confirm with a custom quote, volume discounts apply at this scale.
Sources
- Scalekit Pricingaccessed 2026-04-22
- Scalekit Documentationaccessed 2026-04-22
What Scalekit is
Scalekit launched in 2023 with a tight scope: ship Enterprise SSO and SCIM Directory Sync for B2B SaaS, with per-organization pricing and developer-first DX. The pitch is direct competition with WorkOS and SSOJet at slightly more aggressive entry pricing for early-stage SaaS that has just landed its first enterprise customer asking for SAML.
Where Scalekit wins
Per-organization pricing structure with a generous free auth tier, early-stage B2B SaaS pays primarily for the Enterprise SSO connections themselves, not the underlying user pool. Modern SDKs and a tightly-scoped product surface that does not try to cover unrelated B2C concerns.
Where Scalekit hurts
Very young (2023 founding); small customer base; narrow compliance footprint (SOC 2 Type II only); intentionally B2C-light. For larger enterprise with complex federation requirements or for B2C consumer apps, look elsewhere.
How Scalekit compares
The most relevant comparisons are Scalekit vs WorkOS, Scalekit vs SSOJet, and Auth0 vs Scalekit. For B2C plus B2B from one platform, Auth0 or MojoAuth cover both segments.
Editorial changelog (1 entry)
Profile reviewed: capabilities, pricing, and verdict checked against current public sources.