Grip SaaS Access Control (SAC) is an identity and access management product designed to extend authentication, authorization, and access governance to SaaS applications, web apps, and cloud accounts that fall outside of federated identity providers (i.e., not connected to SSO/SAML). Core functionality: - Tracks and monitors user logins to SaaS services, web apps, and cloud accounts via a browser extension and AI-powered identity recognition, typically surfacing significantly more SaaS usage than previously visible. - Enables SAML-less Single Sign-On by automatically logging users into applications that do not support SAML, without requiring license tier upgrades. - Allows security teams to take over user credentials for unfederated SaaS applications, replacing passwords with policy-compliant ones that are not visible to end users. - Supports centralized management of shared and service account credentials using double-blinded strong passwords, with automatic password updates when personnel or security changes occur. - Enforces access policies by requiring business justification for SaaS usage, controlling access, and preventing credential reuse, duplication, or unsanctioned sharing. Use cases include shadow SaaS discovery, automated user offboarding, SaaS sprawl risk mitigation, user access reviews, secure password rotation, and centralized SaaS access control. The product operates through a browser extension deployed across users and provides a centralized dashboard for security and identity teams.