Getting Started for Enterprise Admins

This guide walks you through setting up your SecDim enterprise tenant and onboarding your team.

Before You Begin

Network Allowlist and Firewall

Ensure your network allowlist and firewall are configured to allow traffic from SecDim’s servers. See Network Allowlist for details.

Roles and Permissions

Understand the management roles available in SecDim:

Role	Permissions
Admin	Full access to all features. Can manage users, departments, games, SSO, policies, API keys, subscriptions, and remove users from the company.
Manager	Same as Admin, except cannot remove users from the company or manage subscriptions.
Department Lead	Can assign and remove users within their own department (via SecDim ID). Can view their own department’s report in the Play Dashboard. Can create and delete games. Cannot remove users from the company.

Role

Permissions

Admin

Full access to all features. Can manage users, departments, games, SSO, policies, API keys, subscriptions, and remove users from the company.

Manager

Same as Admin, except cannot remove users from the company or manage subscriptions.

Department Lead

Can assign and remove users within their own department (via SecDim ID). Can view their own department’s report in the Play Dashboard. Can create and delete games. Cannot remove users from the company.

Step 1: Sign In

If SSO has been configured for your organisation, use your SSO login URL: https://id.secdim.com?auth=<provider>&origin=play
If SSO is not configured, register at SecDim ID using your company email address. You must use your company email — otherwise your account will not be linked to your organisation’s tenant.
You can also sign in using GitHub, GitLab, Microsoft, or Google, as long as the account is linked to your company email address.

Step 2: Add Users

How users join your tenant depends on whether SSO is configured.

With SSO

No manual user setup is required. Users are automatically added to your tenant when they sign in for the first time using your organisation’s SSO login URL.

See SSO Configuration for setup guides.

Without SSO (Invite Link)

You can generate a time-limited invitation URL that allows users to register and join your tenant.

Go to Manage Company
Click Invite People in the top right corner
Set an expiry date for the invite link
Copy and share the link with your team

For more details, see Manage Users.

Step 3: Explore the Dashboard

Your enterprise dashboard at Company Dashboard provides real-time insights into your team’s engagement and skill development.

Key areas:

Comparative grade — how your team compares to other engineering teams
Skills proficiency — skill distribution across difficulty levels
Vulnerability coverage — OWASP Top 10 coverage in completed challenges
Monthly engagement — challenge completion trends over time
User statistics — individual progress, attempts, and time spent

For a full overview, see Dashboard and Reporting.

Step 4: Review Your Games

Your SecDim account manager typically sets up an initial set of games and pathways for your organisation before you start. You can view these on the dashboard.

You can also create new games tailored to your team’s needs:

Go to Company Dashboard
Click Add → Game
Select challenges by language, technology, OWASP category, or severity
Configure game settings (time constraints, hints, restrictions)

See Manage Games for step-by-step instructions.

Step 5: Set Up Departments (Optional)

Departments let you group users into segments. This is useful when you want to:

Restrict certain games or pathways to specific teams
Compare engagement and skill levels across departments
Assign department leads who can manage their own team

Creating Departments

Go to Department Management
Click Add Department
Enter the department name

Assigning Users to Departments

Admins, managers, and department leads can assign users to departments from Manage Company.

See Manage Departments for details.

Automatic Department Assignment via SSO

If your identity provider sends a department claim (e.g. from Microsoft Entra ID), SecDim can automatically assign users to departments on first login. The department name in SecDim must match exactly with the value in the SSO claim.

See Automatic Department Assignment for configuration details.

Step 6: Configure Policies (Optional)

Admins can configure organisation-wide policies from Company Configuration. Policies let you:

Anonymise user data across the platform
Disable specific features for your tenant
Apply other organisation-level settings

Step 7: Generate API Keys (Optional)

To use the SecDim API for reporting, user management, or automation:

Go to API Keys
Generate a new API key
Store the key securely — it will not be shown again

A link to the API schema documentation is also available in the sidebar of Manage Company.

See API Documentation for more information.

Step 8: Configure SSO (If Not Already Done)

If SSO was not set up during onboarding, you can configure it at any time.

SecDim supports any OIDC-compliant identity provider:

What’s Next

Share the game links or SSO login URL with your team
Monitor progress on the Dashboard
Contact your account manager or email [email protected] if you need assistance