Integration

Squad is designed to slot into your existing environment, not replace it. The entire platform is deployed, operated, and maintained by our team. Your organisation provides three things: users, an identity provider, and data. We handle everything else.

Integration Architecture

Integration Surface

Every Squad deployment connects to your environment through exactly three interfaces. There are no agents to install, no middleware to configure, and no background services to maintain on your side.

1. HTTPS — User Access

Your team accesses Squad through a standard web browser at a dedicated URL (e.g., https://yourorg.squadai.uk). No client software, no VPN client, no desktop agent.

• Protocol: HTTPS with TLS 1.2+
• Authentication: Redirects to your identity provider via SSO
• Network requirement: Browser access to your Squad instance URL

2. SAML / OIDC — Identity Federation

Squad federates authentication to your existing identity provider. Your users log in with the credentials they already have. We never store passwords.

• Supported protocols: SAML 2.0, OpenID Connect
• Compatible with: Azure AD, Okta, Google Workspace, on-premise ADFS, any SAML/OIDC-compliant IdP
• Provisioning: Users and roles map from your IdP; no separate user management required

3. REST API — Data Ingestion

Data enters Squad through a documented REST API, the platform UI (drag and drop), or the usep CLI. All formats are normalised into a unified knowledge graph.

• Methods: REST API upload, browser-based upload, CLI batch ingestion
• Supported formats: PDF, DOCX, PPTX, CSV, Excel, Markdown, HTML, plain text, images
• Storage: All data stored within your Squad instance; never shared across tenants

Planned: Native Connectors

We are building connectors for SharePoint, Confluence, S3 buckets, and database sources with scheduled sync. Today, integration is via file upload and API. See Sources & Connectors for current status.

What We Manage

Squad is a fully managed platform. This is a deliberate architectural choice, not a limitation. By owning the full stack, we deliver faster updates, tighter security, and consistent reliability.

Responsibility	Managed by Squad
Infrastructure	Compute, networking, storage, load balancing
Platform	Application deployment, configuration, scaling
Database operations	Neo4j (graph + vector), PostgreSQL (events + audit), Redis (cache + pub/sub), object storage
AI/ML	LLM inference, embedding models, NLP pipelines, model updates
Security	TLS termination, encryption at rest, secret rotation, vulnerability patching
Monitoring	Health checks, alerting, incident response, SLA management
Updates	Zero-downtime deployments, version management, regression testing
Backups	Automated backups with agreed retention and recovery targets

What You Provide

Responsibility	Your organisation
Identity provider	Your existing SSO (Azure AD, Okta, ADFS, etc.)
Users	Assign who in your organisation should have access
Data	Upload documents and files through the UI, API, or CLI
Network access	Allow browser access to your Squad instance URL

Deployment Models

Squad supports three deployment models. In every case, the platform is managed by our team.

Squad Cloud

Hosted on Squad-managed infrastructure. Days to deploy. Automatic updates. The fastest path to value.

Dedicated

Deployed into your cloud (AWS, Azure, GCP) or on-premise environment. Your data never leaves your infrastructure. Squad-managed.

Air-Gapped

Fully disconnected deployment for classified or regulated environments. No external network dependency. Squad-managed via secure delivery.

	Squad Cloud	Dedicated	Air-Gapped
Infrastructure	Squad-managed	Your cloud / on-prem, Squad-managed	Your isolated environment, Squad-managed
Data residency	Your chosen region (UK, EU, US)	Your infrastructure	Your infrastructure
Network	Internet-accessible with SSO	Private network / VPN	Fully disconnected
Setup time	Days	Weeks	Weeks (environment-dependent)
Updates	Automatic, zero-downtime	Coordinated with your change management	Secure delivery, coordinated rollout
Best for	Fast evaluation, teams without strict residency	Regulated industries, data sovereignty	Classified environments, air-gapped networks

Setup Sequence

Integration follows a defined, repeatable sequence. Our team leads every step.

1. Scoping

   We assess your requirements: deployment model, identity provider, data residency, compliance constraints, and initial use case.

2. Identity

   We configure SSO federation with your identity provider. Your IT team provides SAML/OIDC metadata; we handle the Squad-side configuration.

3. Deployment

   We provision your Squad instance, configure the knowledge graph ontology, set up model inference (your API keys or our managed models), and validate end-to-end connectivity.

4. Data

   Your team uploads initial data through the UI, API, or CLI. Our team assists with ontology tuning and ingestion validation.

5. Handover

   We train your team on the platform: querying, workflow creation, the Tune page for curation, and administration. Ongoing support continues via direct access to our engineering team.

Security Posture

Security is embedded across the integration surface, not bolted on.

• Authentication: OAuth2/OIDC with JWT validation; SSO federation to your IdP
• Authorisation: Role-based access control with granular permissions
• Encryption: TLS in transit; encryption at rest per your compliance requirements
• Audit: Append-only audit trail with correlation IDs across all operations
• AI safety: Deterministic security review on generated queries; risk-aware routing; dynamic tool validation
• Tenant isolation: Single-tenant deployments; no data sharing across organisations

For full details, see the Security page.

Get Started

Ready to integrate Squad into your environment? Contact our team to begin scoping.