diff --git a/.changeset/orange-pandas-shake.md b/.changeset/orange-pandas-shake.md
new file mode 100644
index 00000000000..280d85dc93c
--- /dev/null
+++ b/.changeset/orange-pandas-shake.md
@@ -0,0 +1,7 @@
+---
+'@clerk/localizations': patch
+'@clerk/shared': patch
+'@clerk/ui': patch
+---
+
+Add an overview to the organization profile Security page. The page now lands on a summary of the SSO connection — status badge (Unconfigured, In Progress, Active, Inactive), an Enable SSO toggle, and the provider, domain, sign-on URL, issuer, and certificate details — with Edit and Delete actions, and switches into the existing configuration flow on Start, Continue, or Edit.
diff --git a/packages/localizations/src/en-US.ts b/packages/localizations/src/en-US.ts
index b6d14fad930..2a33cc67cb6 100644
--- a/packages/localizations/src/en-US.ts
+++ b/packages/localizations/src/en-US.ts
@@ -1066,6 +1066,30 @@ export const enUS: LocalizationResource = {
       successMessage: '{{domain}} has been removed.',
       title: 'Remove domain',
     },
+    securityPage: {
+      ssoSection: {
+        badge__active: 'Active',
+        badge__inactive: 'Inactive',
+        badge__inProgress: 'In Progress',
+        badge__unconfigured: 'Unconfigured',
+        certificateLabel: 'Certificate',
+        description: 'Configure to require organization members to sign in through your identity provider',
+        description__configured:
+          'Configure SSO to require organization members to sign in through your identity provider',
+        domainLabel: 'Domain',
+        enableSsoLabel: 'Enable SSO',
+        issuerLabel: 'Issuer',
+        menuAction__delete: 'Delete',
+        menuAction__edit: 'Edit',
+        primaryButton__continueConfiguration: 'Continue configuration',
+        primaryButton__startConfiguration: 'Start configuration',
+        providerLabel: 'Provider',
+        signOnUrlLabel: 'Sign on URL',
+        startedNotFinished: 'You have started a configuration but haven’t finished',
+        title: 'SSO',
+      },
+      title: 'Security',
+    },
     start: {
       headerTitle__general: 'General',
       headerTitle__members: 'Members',
diff --git a/packages/shared/src/types/elementIds.ts b/packages/shared/src/types/elementIds.ts
index 336279a9a07..bc03eced10d 100644
--- a/packages/shared/src/types/elementIds.ts
+++ b/packages/shared/src/types/elementIds.ts
@@ -53,6 +53,7 @@ export type ProfileSectionId =
   | 'manageVerifiedDomains'
   | 'subscriptionsList'
   | 'paymentMethods'
+  | 'sso'
   | 'ssoStatus'
   | 'enableSso'
   | 'ssoDomain'
@@ -61,7 +62,13 @@ export type ProfileSectionId =
   | 'resetSso'
   | 'testSsoUrl'
   | 'testResults';
-export type ProfilePageId = 'account' | 'security' | 'organizationGeneral' | 'organizationMembers' | 'billing';
+export type ProfilePageId =
+  | 'account'
+  | 'security'
+  | 'organizationGeneral'
+  | 'organizationMembers'
+  | 'organizationSecurity'
+  | 'billing';
 
 export type UserPreviewId = 'userButton' | 'personalWorkspace';
 export type OrganizationPreviewId =
diff --git a/packages/shared/src/types/localization.ts b/packages/shared/src/types/localization.ts
index 5b4feb90948..c3392f3c548 100644
--- a/packages/shared/src/types/localization.ts
+++ b/packages/shared/src/types/localization.ts
@@ -1130,6 +1130,29 @@ export type __internal_LocalizationResource = {
       messageLine2: LocalizationValue;
       successMessage: LocalizationValue;
     };
+    securityPage: {
+      title: LocalizationValue;
+      ssoSection: {
+        title: LocalizationValue;
+        badge__unconfigured: LocalizationValue;
+        badge__inProgress: LocalizationValue;
+        badge__active: LocalizationValue;
+        badge__inactive: LocalizationValue;
+        description: LocalizationValue;
+        description__configured: LocalizationValue;
+        startedNotFinished: LocalizationValue;
+        primaryButton__startConfiguration: LocalizationValue;
+        primaryButton__continueConfiguration: LocalizationValue;
+        enableSsoLabel: LocalizationValue;
+        providerLabel: LocalizationValue;
+        domainLabel: LocalizationValue;
+        signOnUrlLabel: LocalizationValue;
+        issuerLabel: LocalizationValue;
+        certificateLabel: LocalizationValue;
+        menuAction__edit: LocalizationValue;
+        menuAction__delete: LocalizationValue;
+      };
+    };
     membersPage: {
       detailsTitle__emptyRow: LocalizationValue;
       action__invite: LocalizationValue;
diff --git a/packages/ui/src/components/ConfigureSSO/ResetConnectionDialog.tsx b/packages/ui/src/components/ConfigureSSO/ResetConnectionDialog.tsx
index c35bbf9bb46..2ae450a7d2e 100644
--- a/packages/ui/src/components/ConfigureSSO/ResetConnectionDialog.tsx
+++ b/packages/ui/src/components/ConfigureSSO/ResetConnectionDialog.tsx
@@ -8,17 +8,15 @@ import { Modal } from '@/elements/Modal';
 import { useFormControl } from '@/ui/utils/useFormControl';
 import { handleError } from '@/utils/errorHandler';
 
-import { useConfigureSSO } from './ConfigureSSOContext';
-
 type ResetConnectionDialogProps = {
   isOpen: boolean;
   onClose: () => void;
   confirmationValue: string;
+  onDelete: () => Promise<unknown>;
+  contentRef: React.RefObject<HTMLDivElement>;
 };
 
 export const ResetConnectionDialog = (props: ResetConnectionDialogProps): JSX.Element | null => {
-  const { contentRef } = useConfigureSSO();
-
   if (!props.isOpen) {
     return null;
   }
@@ -27,7 +25,7 @@ export const ResetConnectionDialog = (props: ResetConnectionDialogProps): JSX.El
     <Modal
       handleClose={props.onClose}
       canCloseModal={false}
-      portalRoot={contentRef}
+      portalRoot={props.contentRef}
       containerSx={t => ({
         alignItems: 'center',
         position: 'absolute',
@@ -44,9 +42,8 @@ export const ResetConnectionDialog = (props: ResetConnectionDialogProps): JSX.El
 };
 
 const ResetConnectionDialogContent = withCardStateProvider((props: ResetConnectionDialogProps) => {
-  const { onClose, confirmationValue } = props;
+  const { onClose, onDelete, confirmationValue } = props;
   const card = useCardState();
-  const { enterpriseConnection, mutations } = useConfigureSSO();
 
   const confirmationField = useFormControl('deleteConfirmation', '', {
     type: 'text',
@@ -60,18 +57,13 @@ const ResetConnectionDialogContent = withCardStateProvider((props: ResetConnecti
   const canSubmit = Boolean(confirmationValue && confirmationField.value === confirmationValue);
 
   const onSubmit = async () => {
-    if (!enterpriseConnection || !canSubmit) {
+    if (!canSubmit) {
       return;
     }
 
     try {
-      // Reset is a pure delete — no navigation. Dropping `hasConnection` breaks
-      // the active step's entry guard, so the wizard self-corrects to the
-      // furthest-reachable step. The mutation is already reverification-wrapped.
-      // No `useWizard()` here — that lets this dialog be triggered from ANY
-      // footer (including the nested SAML configure footers) without binding to
-      // a nested wizard.
-      await mutations.deleteConnection(enterpriseConnection.id);
+      // A pure delete, no navigation — the wizard self-corrects once the active step's entry guard breaks.
+      await onDelete();
       onClose();
     } catch (err) {
       handleError(err as Error, [confirmationField], card.setError);
diff --git a/packages/ui/src/components/ConfigureSSO/__tests__/ResetConnectionDialog.test.tsx b/packages/ui/src/components/ConfigureSSO/__tests__/ResetConnectionDialog.test.tsx
index d16271cd6fe..dff7186523c 100644
--- a/packages/ui/src/components/ConfigureSSO/__tests__/ResetConnectionDialog.test.tsx
+++ b/packages/ui/src/components/ConfigureSSO/__tests__/ResetConnectionDialog.test.tsx
@@ -1,34 +1,13 @@
-import type { EnterpriseConnectionResource } from '@clerk/shared/types';
 import { describe, expect, it, vi } from 'vitest';
 
 import { bindCreateFixtures } from '@/test/create-fixtures';
 import { render, screen, waitFor } from '@/test/utils';
 import { CardStateProvider } from '@/ui/elements/contexts';
 
-// The dialog no longer touches the wizard. On confirm it calls the
-// reverification-wrapped `mutations.deleteConnection(id)` directly — a pure
-// delete, no navigation — and the wizard self-corrects to the
-// furthest-reachable step once the active step's guard breaks. That lets the
-// dialog be triggered from ANY footer (including nested SAML configure footers)
-// without binding to a nested wizard.
-const deleteConnection = vi.fn();
-
-const connectionMockState = vi.hoisted(() => ({
-  current: { id: 'idn_connection_1' } as Partial<EnterpriseConnectionResource> | null,
-}));
-
-vi.mock('../ConfigureSSOContext', () => ({
-  useConfigureSSO: () => ({
-    enterpriseConnection: connectionMockState.current,
-    contentRef: { current: null },
-    // The dialog's confirm calls the reverification-wrapped `deleteConnection`
-    // mutation directly. No navigation — the wizard self-corrects.
-    mutations: { deleteConnection },
-  }),
-}));
-
 import { ResetConnectionDialog } from '../ResetConnectionDialog';
 
+const deleteConnection = vi.fn();
+
 const { createFixtures } = bindCreateFixtures('ConfigureSSO');
 
 const renderDialog = (
@@ -42,6 +21,8 @@ const renderDialog = (
         isOpen={props.isOpen ?? true}
         onClose={onClose}
         confirmationValue={props.confirmationValue ?? 'Acme Inc'}
+        onDelete={() => deleteConnection('idn_connection_1')}
+        contentRef={{ current: null }}
       />
     </CardStateProvider>,
     { wrapper },
@@ -52,7 +33,6 @@ const renderDialog = (
 const resetMocks = () => {
   deleteConnection.mockReset();
   deleteConnection.mockResolvedValue(undefined);
-  connectionMockState.current = { id: 'idn_connection_1' };
 };
 
 describe('ResetConnectionDialog', () => {
diff --git a/packages/ui/src/components/ConfigureSSO/elements/Step.tsx b/packages/ui/src/components/ConfigureSSO/elements/Step.tsx
index 96c70eaadd8..53eccada5db 100644
--- a/packages/ui/src/components/ConfigureSSO/elements/Step.tsx
+++ b/packages/ui/src/components/ConfigureSSO/elements/Step.tsx
@@ -206,7 +206,7 @@ FooterContinue.displayName = 'Step.Footer.Continue';
  * footer row, matching the prior destructive affordance.
  */
 const FooterReset = (): JSX.Element | null => {
-  const { organizationEnterpriseConnection: c } = useConfigureSSO();
+  const { organizationEnterpriseConnection: c, enterpriseConnection, mutations, contentRef } = useConfigureSSO();
   const organization = __internal_useOrganizationBase();
   const [isOpen, setIsOpen] = useState(false);
 
@@ -229,6 +229,10 @@ const FooterReset = (): JSX.Element | null => {
         isOpen={isOpen}
         onClose={() => setIsOpen(false)}
         confirmationValue={organization?.name ?? ''}
+        // The footer self-hides without a connection (`hasConnection` above), so the resource is set.
+        // eslint-disable-next-line @typescript-eslint/no-non-null-assertion
+        onDelete={() => mutations.deleteConnection(enterpriseConnection!.id)}
+        contentRef={contentRef}
       />
     </>
   );
diff --git a/packages/ui/src/components/ConfigureSSO/steps/ConfirmationStep.tsx b/packages/ui/src/components/ConfigureSSO/steps/ConfirmationStep.tsx
index 6e1a29d3fea..2f0a10385b3 100644
--- a/packages/ui/src/components/ConfigureSSO/steps/ConfirmationStep.tsx
+++ b/packages/ui/src/components/ConfigureSSO/steps/ConfirmationStep.tsx
@@ -254,6 +254,7 @@ const ConfigurationDetailsSection = (): JSX.Element => {
 };
 
 const ResetConnectionSection = (): JSX.Element => {
+  const { enterpriseConnection, mutations, contentRef } = useConfigureSSO();
   const { organization } = useOrganization();
   const [isOpen, setIsOpen] = useState(false);
 
@@ -277,6 +278,10 @@ const ResetConnectionSection = (): JSX.Element => {
         isOpen={isOpen}
         onClose={() => setIsOpen(false)}
         confirmationValue={organization?.name ?? ''}
+        // The confirmation step is only reachable with a connection, so the resource is set.
+        // eslint-disable-next-line @typescript-eslint/no-non-null-assertion
+        onDelete={() => mutations.deleteConnection(enterpriseConnection!.id)}
+        contentRef={contentRef}
       />
     </ProfileSection.Root>
   );
diff --git a/packages/ui/src/components/OrganizationProfile/OrganizationSecurityPage.tsx b/packages/ui/src/components/OrganizationProfile/OrganizationSecurityPage.tsx
index 87ff924593d..98ee5378068 100644
--- a/packages/ui/src/components/OrganizationProfile/OrganizationSecurityPage.tsx
+++ b/packages/ui/src/components/OrganizationProfile/OrganizationSecurityPage.tsx
@@ -1,9 +1,15 @@
 import { useOrganization } from '@clerk/shared/react';
+import { useState } from 'react';
 
+import { Header } from '@/ui/elements/Header';
+import { ProfileCard } from '@/ui/elements/ProfileCard';
+
+import { Col, descriptors, localizationKeys } from '../../customizables';
 import { ConfigureSSOProtect } from '../ConfigureSSO/ConfigureSSO';
 import { ConfigureSSOSkeleton } from '../ConfigureSSO/ConfigureSSOSkeleton';
 import { ConfigureSSOWizard } from '../ConfigureSSO/ConfigureSSOWizard';
 import { useOrganizationEnterpriseConnection } from '../ConfigureSSO/hooks/useOrganizationEnterpriseConnection';
+import { SecuritySsoSection } from './SecuritySsoSection';
 
 type OrganizationSecurityPageProps = {
   contentRef: React.RefObject<HTMLDivElement>;
@@ -24,6 +30,7 @@ export const OrganizationSecurityPage = ({ contentRef }: OrganizationSecurityPag
 const OrganizationSecurityPageContent = ({ contentRef }: OrganizationSecurityPageProps) => {
   const {
     isLoading,
+    organization,
     enterpriseConnection,
     organizationEnterpriseConnection,
     testRuns,
@@ -31,6 +38,8 @@ const OrganizationSecurityPageContent = ({ contentRef }: OrganizationSecurityPag
     primaryEmailAddress,
   } = useOrganizationEnterpriseConnection();
 
+  const [view, setView] = useState<'overview' | 'wizard'>('overview');
+
   // Gate loading above the provider so the context never observes a loading state.
   if (isLoading) {
     return <ConfigureSSOSkeleton />;
@@ -38,14 +47,45 @@ const OrganizationSecurityPageContent = ({ contentRef }: OrganizationSecurityPag
 
   return (
     <ConfigureSSOProtect>
-      <ConfigureSSOWizard
-        organizationEnterpriseConnection={organizationEnterpriseConnection}
-        testRuns={testRuns}
-        enterpriseConnection={enterpriseConnection}
-        contentRef={contentRef}
-        mutations={mutations}
-        primaryEmailAddress={primaryEmailAddress}
-      />
+      {view === 'overview' ? (
+        <ProfileCard.Page>
+          <Col
+            elementDescriptor={descriptors.page}
+            sx={t => ({ gap: t.space.$8 })}
+          >
+            <Col
+              elementDescriptor={descriptors.profilePage}
+              elementId={descriptors.profilePage.setId('organizationSecurity')}
+            >
+              <Header.Root>
+                <Header.Title
+                  localizationKey={localizationKeys('organizationProfile.securityPage.title')}
+                  sx={t => ({ marginBottom: t.space.$4 })}
+                  textVariant='h2'
+                />
+              </Header.Root>
+              <SecuritySsoSection
+                connection={organizationEnterpriseConnection}
+                enterpriseConnection={enterpriseConnection}
+                setConnectionActive={mutations.setConnectionActive}
+                deleteConnection={mutations.deleteConnection}
+                organizationName={organization?.name ?? ''}
+                contentRef={contentRef}
+                onConfigure={() => setView('wizard')}
+              />
+            </Col>
+          </Col>
+        </ProfileCard.Page>
+      ) : (
+        <ConfigureSSOWizard
+          organizationEnterpriseConnection={organizationEnterpriseConnection}
+          testRuns={testRuns}
+          enterpriseConnection={enterpriseConnection}
+          contentRef={contentRef}
+          mutations={mutations}
+          primaryEmailAddress={primaryEmailAddress}
+        />
+      )}
     </ConfigureSSOProtect>
   );
 };
diff --git a/packages/ui/src/components/OrganizationProfile/SecuritySsoSection.tsx b/packages/ui/src/components/OrganizationProfile/SecuritySsoSection.tsx
new file mode 100644
index 00000000000..1a5745b68bb
--- /dev/null
+++ b/packages/ui/src/components/OrganizationProfile/SecuritySsoSection.tsx
@@ -0,0 +1,476 @@
+import { iconImageUrl } from '@clerk/shared/constants';
+import type { EnterpriseConnectionResource } from '@clerk/shared/types';
+import type { PropsWithChildren } from 'react';
+import { useId, useState } from 'react';
+
+import { Card } from '@/ui/elements/Card';
+import { CardStateProvider, useCardState } from '@/ui/elements/contexts';
+import { ProfileSection } from '@/ui/elements/Section';
+import { Switch } from '@/ui/elements/Switch';
+import { ThreeDotsMenu } from '@/ui/elements/ThreeDotsMenu';
+import { handleError } from '@/utils/errorHandler';
+
+import type { LocalizationKey } from '../../customizables';
+import { Badge, Button, Col, descriptors, Flex, Link, localizationKeys, Span, Text } from '../../customizables';
+import type {
+  OrganizationEnterpriseConnection,
+  OrganizationEnterpriseConnectionStatus,
+} from '../ConfigureSSO/domain/organizationEnterpriseConnection';
+import type { EnterpriseConnectionMutations } from '../ConfigureSSO/hooks/useOrganizationEnterpriseConnection';
+import { ResetConnectionDialog } from '../ConfigureSSO/ResetConnectionDialog';
+import type { ProviderType } from '../ConfigureSSO/types';
+
+/** Props-driven: the Security page owns the data — no wizard context below the page. */
+type SecuritySsoSectionProps = {
+  connection: OrganizationEnterpriseConnection;
+  enterpriseConnection: EnterpriseConnectionResource | undefined;
+  setConnectionActive: EnterpriseConnectionMutations['setConnectionActive'];
+  deleteConnection: EnterpriseConnectionMutations['deleteConnection'];
+  organizationName: string;
+  contentRef: React.RefObject<HTMLDivElement>;
+  onConfigure: () => void;
+};
+
+const STATUS_BADGES: Record<
+  OrganizationEnterpriseConnectionStatus,
+  { id: string; colorScheme: 'danger' | 'warning' | 'success'; label: LocalizationKey }
+> = {
+  unconfigured: {
+    id: 'unconfigured',
+    colorScheme: 'danger',
+    label: localizationKeys('organizationProfile.securityPage.ssoSection.badge__unconfigured'),
+  },
+  in_progress: {
+    id: 'inProgress',
+    colorScheme: 'warning',
+    label: localizationKeys('organizationProfile.securityPage.ssoSection.badge__inProgress'),
+  },
+  active: {
+    id: 'active',
+    colorScheme: 'success',
+    label: localizationKeys('organizationProfile.securityPage.ssoSection.badge__active'),
+  },
+  inactive: {
+    id: 'inactive',
+    colorScheme: 'danger',
+    label: localizationKeys('organizationProfile.securityPage.ssoSection.badge__inactive'),
+  },
+};
+
+/** Keep in sync with the select-provider step's MONOCHROMATIC_PROVIDER_ICONS. */
+const MONOCHROMATIC_PROVIDER_ICONS: ReadonlySet<string> = new Set(['okta']);
+
+const PROVIDER_PRESENTATION: Record<ProviderType, { label: LocalizationKey; iconId: string }> = {
+  saml_okta: { label: localizationKeys('configureSSO.selectProviderStep.saml.okta'), iconId: 'okta' },
+  saml_microsoft: { label: localizationKeys('configureSSO.selectProviderStep.saml.microsoft'), iconId: 'microsoft' },
+  saml_google: { label: localizationKeys('configureSSO.selectProviderStep.saml.google'), iconId: 'google' },
+  saml_custom: { label: localizationKeys('configureSSO.selectProviderStep.saml.customSaml'), iconId: 'saml' },
+};
+
+export const SecuritySsoSection = (props: SecuritySsoSectionProps): JSX.Element => {
+  const { connection, onConfigure } = props;
+  const badge = STATUS_BADGES[connection.status];
+  const isConfigured = connection.status === 'active' || connection.status === 'inactive';
+
+  return (
+    <ProfileSection.Root
+      title={localizationKeys('organizationProfile.securityPage.ssoSection.title')}
+      id='sso'
+      centered={false}
+      badge={
+        <Badge
+          elementDescriptor={descriptors.organizationProfileSecuritySsoBadge}
+          elementId={descriptors.organizationProfileSecuritySsoBadge.setId(badge.id)}
+          colorScheme={badge.colorScheme}
+          localizationKey={badge.label}
+        />
+      }
+    >
+      {connection.status === 'unconfigured' && (
+        <NotConfiguredContent
+          primaryButtonKey={localizationKeys(
+            'organizationProfile.securityPage.ssoSection.primaryButton__startConfiguration',
+          )}
+          primaryButtonId='start'
+          onConfigure={onConfigure}
+        />
+      )}
+
+      {connection.status === 'in_progress' && (
+        <NotConfiguredContent
+          noticeKey={localizationKeys('organizationProfile.securityPage.ssoSection.startedNotFinished')}
+          primaryButtonKey={localizationKeys(
+            'organizationProfile.securityPage.ssoSection.primaryButton__continueConfiguration',
+          )}
+          primaryButtonId='continue'
+          onConfigure={onConfigure}
+        />
+      )}
+
+      {isConfigured && (
+        <CardStateProvider>
+          <ConfiguredContent {...props} />
+        </CardStateProvider>
+      )}
+    </ProfileSection.Root>
+  );
+};
+
+type NotConfiguredContentProps = {
+  noticeKey?: LocalizationKey;
+  primaryButtonKey: LocalizationKey;
+  primaryButtonId: string;
+  onConfigure: () => void;
+};
+
+const NotConfiguredContent = ({
+  noticeKey,
+  primaryButtonKey,
+  primaryButtonId,
+  onConfigure,
+}: NotConfiguredContentProps): JSX.Element => (
+  <Col
+    align='start'
+    gap={4}
+  >
+    <Col gap={2}>
+      <Text
+        elementDescriptor={descriptors.organizationProfileSecuritySsoDescription}
+        colorScheme='secondary'
+        localizationKey={localizationKeys('organizationProfile.securityPage.ssoSection.description')}
+      />
+      {noticeKey && (
+        <Text
+          elementDescriptor={descriptors.organizationProfileSecuritySsoInProgressNotice}
+          colorScheme='secondary'
+          localizationKey={noticeKey}
+        />
+      )}
+    </Col>
+
+    <Button
+      elementDescriptor={descriptors.organizationProfileSecuritySsoConfigureButton}
+      elementId={descriptors.organizationProfileSecuritySsoConfigureButton.setId(primaryButtonId)}
+      variant='outline'
+      size='sm'
+      onClick={onConfigure}
+      localizationKey={primaryButtonKey}
+    />
+  </Col>
+);
+
+const ConfiguredContent = (props: SecuritySsoSectionProps): JSX.Element => {
+  const { connection, enterpriseConnection, deleteConnection, organizationName, contentRef, onConfigure } = props;
+  const card = useCardState();
+  const [isResetDialogOpen, setIsResetDialogOpen] = useState(false);
+
+  const provider = connection.provider ? PROVIDER_PRESENTATION[connection.provider] : undefined;
+  const domains = enterpriseConnection?.domains ?? [];
+  const samlConnection = enterpriseConnection?.samlConnection;
+
+  return (
+    <Col gap={3}>
+      <Flex
+        align='start'
+        justify='between'
+        gap={3}
+      >
+        <Text
+          elementDescriptor={descriptors.organizationProfileSecuritySsoDescription}
+          colorScheme='secondary'
+          localizationKey={localizationKeys('organizationProfile.securityPage.ssoSection.description__configured')}
+          sx={{ minWidth: 0 }}
+        />
+
+        <ThreeDotsMenu
+          elementId='sso'
+          actions={[
+            {
+              label: localizationKeys('organizationProfile.securityPage.ssoSection.menuAction__edit'),
+              onClick: onConfigure,
+            },
+            {
+              label: localizationKeys('organizationProfile.securityPage.ssoSection.menuAction__delete'),
+              isDestructive: true,
+              onClick: () => setIsResetDialogOpen(true),
+            },
+          ]}
+        />
+      </Flex>
+
+      <Card.Alert>{card.error}</Card.Alert>
+
+      <EnableSsoToggle
+        connection={connection}
+        enterpriseConnection={enterpriseConnection}
+        setConnectionActive={props.setConnectionActive}
+      />
+
+      <Col
+        elementDescriptor={descriptors.organizationProfileSecuritySsoDetailRows}
+        gap={2}
+        // Indents the rows so the labels line up under the toggle's text label.
+        sx={t => ({ paddingInlineStart: t.space.$8 })}
+      >
+        {provider && (
+          <DetailRow
+            id='provider'
+            label={localizationKeys('organizationProfile.securityPage.ssoSection.providerLabel')}
+          >
+            <Flex
+              align='center'
+              gap={2}
+              sx={{ minWidth: 0 }}
+            >
+              <ProviderIcon iconId={provider.iconId} />
+              <Text
+                localizationKey={provider.label}
+                truncate
+              />
+            </Flex>
+          </DetailRow>
+        )}
+
+        {domains.length > 0 && (
+          <DetailRow
+            id='domain'
+            label={localizationKeys('organizationProfile.securityPage.ssoSection.domainLabel')}
+          >
+            <Flex
+              justify='end'
+              align='center'
+              wrap='wrap'
+              gap={1}
+              sx={{ minWidth: 0 }}
+            >
+              {domains.map(domain => (
+                <ValueChip
+                  key={domain}
+                  id='domain'
+                >
+                  {domain}
+                </ValueChip>
+              ))}
+            </Flex>
+          </DetailRow>
+        )}
+
+        {samlConnection?.idpSsoUrl && (
+          <DetailRow
+            id='signOnUrl'
+            label={localizationKeys('organizationProfile.securityPage.ssoSection.signOnUrlLabel')}
+          >
+            <LinkChip
+              id='signOnUrl'
+              href={samlConnection.idpSsoUrl}
+            />
+          </DetailRow>
+        )}
+
+        {samlConnection?.idpEntityId && (
+          <DetailRow
+            id='issuer'
+            label={localizationKeys('organizationProfile.securityPage.ssoSection.issuerLabel')}
+          >
+            <LinkChip
+              id='issuer'
+              href={samlConnection.idpEntityId}
+            />
+          </DetailRow>
+        )}
+
+        {samlConnection?.idpCertificate && (
+          <DetailRow
+            id='certificate'
+            label={localizationKeys('organizationProfile.securityPage.ssoSection.certificateLabel')}
+          >
+            <ValueChip id='certificate'>{samlConnection.idpCertificate}</ValueChip>
+          </DetailRow>
+        )}
+      </Col>
+
+      <ResetConnectionDialog
+        isOpen={isResetDialogOpen}
+        onClose={() => setIsResetDialogOpen(false)}
+        confirmationValue={organizationName}
+        // A configured (active / inactive) connection guarantees the resource is set.
+        // eslint-disable-next-line @typescript-eslint/no-non-null-assertion
+        onDelete={() => deleteConnection(enterpriseConnection!.id)}
+        contentRef={contentRef}
+      />
+    </Col>
+  );
+};
+
+type EnableSsoToggleProps = Pick<
+  SecuritySsoSectionProps,
+  'connection' | 'enterpriseConnection' | 'setConnectionActive'
+>;
+
+const EnableSsoToggle = ({
+  connection,
+  enterpriseConnection,
+  setConnectionActive,
+}: EnableSsoToggleProps): JSX.Element => {
+  const card = useCardState();
+  const labelId = useId();
+
+  const [isChecked, setIsChecked] = useState(connection.isActive);
+
+  const onActiveChange = async (active: boolean) => {
+    if (card.isLoading) {
+      return;
+    }
+
+    card.setError(undefined);
+    card.setLoading();
+    setIsChecked(active);
+
+    try {
+      // A configured (active / inactive) connection guarantees the resource is set.
+      // eslint-disable-next-line @typescript-eslint/no-non-null-assertion
+      const updated = await setConnectionActive(enterpriseConnection!.id, active);
+      if (updated) {
+        setIsChecked(updated.active);
+      }
+    } catch (err) {
+      setIsChecked(!active);
+      handleError(err as Error, [], card.setError);
+    } finally {
+      card.setIdle();
+    }
+  };
+
+  return (
+    <Flex
+      elementDescriptor={descriptors.organizationProfileSecuritySsoEnableRow}
+      align='center'
+      gap={2}
+    >
+      <Switch
+        isChecked={isChecked}
+        // The spec gates enabling on a successful test run.
+        isDisabled={card.isLoading || (!connection.hasSuccessfulTestRun && !connection.isActive)}
+        onChange={active => void onActiveChange(active)}
+        aria-labelledby={labelId}
+      />
+      <Text
+        elementDescriptor={descriptors.organizationProfileSecuritySsoEnableLabel}
+        id={labelId}
+        localizationKey={localizationKeys('organizationProfile.securityPage.ssoSection.enableSsoLabel')}
+      />
+    </Flex>
+  );
+};
+
+type DetailRowProps = PropsWithChildren<{
+  id: string;
+  label: LocalizationKey;
+}>;
+
+const DetailRow = ({ id, label, children }: DetailRowProps): JSX.Element => (
+  <Flex
+    elementDescriptor={descriptors.organizationProfileSecuritySsoDetailRow}
+    elementId={descriptors.organizationProfileSecuritySsoDetailRow.setId(id)}
+    align='center'
+    justify='between'
+    gap={3}
+  >
+    <Text
+      elementDescriptor={descriptors.organizationProfileSecuritySsoDetailRowLabel}
+      elementId={descriptors.organizationProfileSecuritySsoDetailRowLabel.setId(id)}
+      colorScheme='secondary'
+      localizationKey={label}
+      sx={{ flexShrink: 0, whiteSpace: 'nowrap' }}
+    />
+    <Flex
+      justify='end'
+      // Bounds the value side to the remaining row width so chips truncate instead of overflowing the card.
+      sx={{ flex: '1 1 0', minWidth: 0 }}
+    >
+      {children}
+    </Flex>
+  </Flex>
+);
+
+type ValueChipProps = {
+  id: string;
+  children: string;
+};
+
+const ValueChip = ({ id, children }: ValueChipProps): JSX.Element => (
+  <Badge
+    elementDescriptor={descriptors.organizationProfileSecuritySsoDetailRowChip}
+    elementId={descriptors.organizationProfileSecuritySsoDetailRowChip.setId(id)}
+    sx={{ maxWidth: '100%', minWidth: 0 }}
+  >
+    <Text
+      as='span'
+      variant='caption'
+      truncate
+      title={children}
+      sx={{ color: 'inherit' }}
+    >
+      {children}
+    </Text>
+  </Badge>
+);
+
+type LinkChipProps = {
+  id: string;
+  href: string;
+};
+
+const LinkChip = ({ id, href }: LinkChipProps): JSX.Element => (
+  <Badge
+    elementDescriptor={descriptors.organizationProfileSecuritySsoDetailRowChip}
+    elementId={descriptors.organizationProfileSecuritySsoDetailRowChip.setId(id)}
+    sx={{ maxWidth: '100%', minWidth: 0 }}
+  >
+    <Link
+      elementDescriptor={descriptors.organizationProfileSecuritySsoDetailRowLink}
+      elementId={descriptors.organizationProfileSecuritySsoDetailRowLink.setId(id)}
+      href={href}
+      isExternal
+      title={href}
+      sx={{
+        color: 'inherit',
+        display: 'block',
+        overflow: 'hidden',
+        whiteSpace: 'nowrap',
+        textOverflow: 'ellipsis',
+        textDecoration: 'underline',
+        minWidth: 0,
+      }}
+    >
+      {href}
+    </Link>
+  </Badge>
+);
+
+const ProviderIcon = ({ iconId }: { iconId: string }): JSX.Element => (
+  <Span
+    elementDescriptor={descriptors.organizationProfileSecuritySsoProviderIcon}
+    aria-hidden
+    sx={theme => {
+      const baseSize = { width: theme.sizes.$4, height: theme.sizes.$4, flexShrink: 0 };
+      if (MONOCHROMATIC_PROVIDER_ICONS.has(iconId)) {
+        return {
+          ...baseSize,
+          backgroundColor: theme.colors.$colorForeground,
+          maskImage: `url(${iconImageUrl(iconId)})`,
+          maskSize: 'contain',
+          maskPosition: 'center',
+          maskRepeat: 'no-repeat',
+        };
+      }
+      return {
+        ...baseSize,
+        backgroundImage: `url(${iconImageUrl(iconId)})`,
+        backgroundSize: 'contain',
+        backgroundPosition: 'center',
+        backgroundRepeat: 'no-repeat',
+      };
+    }}
+  />
+);
diff --git a/packages/ui/src/components/OrganizationProfile/__tests__/OrganizationSecurityPage.test.tsx b/packages/ui/src/components/OrganizationProfile/__tests__/OrganizationSecurityPage.test.tsx
new file mode 100644
index 00000000000..d4d15c889e1
--- /dev/null
+++ b/packages/ui/src/components/OrganizationProfile/__tests__/OrganizationSecurityPage.test.tsx
@@ -0,0 +1,323 @@
+import { ClerkAPIResponseError } from '@clerk/shared/error';
+import { describe, expect, it } from 'vitest';
+
+import { bindCreateFixtures } from '@/test/create-fixtures';
+import { render, screen, waitFor } from '@/test/utils';
+
+import { OrganizationSecurityPage } from '../OrganizationSecurityPage';
+
+const { createFixtures } = bindCreateFixtures('OrganizationProfile');
+
+const withSecurityPageFixtures = (f: Parameters<Parameters<typeof createFixtures>[0]>[0]) => {
+  f.withEnterpriseSso({ selfServeSSO: true });
+  f.withEmailAddress();
+  f.withOrganizations();
+  f.withUser({
+    email_addresses: ['test@clerk.com'],
+    organization_memberships: [{ name: 'Org1', permissions: ['org:sys_entconns:manage'] }],
+  });
+};
+
+const configuredConnection = (overrides: Record<string, unknown> = {}) =>
+  ({
+    id: 'ent_1',
+    name: 'clerk.com',
+    provider: 'saml_okta',
+    active: false,
+    organizationId: 'Org1',
+    domains: ['clerk.com'],
+    samlConnection: {
+      idpSsoUrl: 'https://idp.example.com/sso',
+      idpEntityId: 'https://idp.example.com/entity',
+      idpCertificate: 'CERT',
+    },
+    ...overrides,
+  }) as any;
+
+const renderPage = (wrapper: React.ComponentType<{ children?: React.ReactNode }>) =>
+  render(<OrganizationSecurityPage contentRef={{ current: null }} />, { wrapper });
+
+describe('OrganizationSecurityPage', () => {
+  describe('overview states', () => {
+    it('renders the unconfigured state with a Start configuration action', async () => {
+      const { wrapper, fixtures } = await createFixtures(withSecurityPageFixtures);
+
+      fixtures.clerk.organization?.getEnterpriseConnections.mockResolvedValue([]);
+
+      renderPage(wrapper);
+
+      expect(await screen.findByRole('heading', { name: 'Security' })).toBeInTheDocument();
+      expect(screen.getByText('SSO')).toBeInTheDocument();
+      expect(screen.getByText('Unconfigured')).toBeInTheDocument();
+      expect(
+        screen.getByText('Configure to require organization members to sign in through your identity provider'),
+      ).toBeInTheDocument();
+      expect(screen.getByRole('button', { name: 'Start configuration' })).toBeInTheDocument();
+
+      expect(screen.queryByRole('switch')).not.toBeInTheDocument();
+      expect(screen.queryByRole('button', { name: /open menu/i })).not.toBeInTheDocument();
+      expect(screen.queryByText(/select your identity provider/i)).not.toBeInTheDocument();
+    });
+
+    it('renders the in-progress state with a Continue configuration action', async () => {
+      const { wrapper, fixtures } = await createFixtures(withSecurityPageFixtures);
+
+      // A connection without SAML configuration is mid-setup.
+      fixtures.clerk.organization?.getEnterpriseConnections.mockResolvedValue([
+        configuredConnection({ samlConnection: null }),
+      ]);
+      fixtures.clerk.organization?.getEnterpriseConnectionTestRuns.mockResolvedValue({
+        data: [],
+        total_count: 0,
+      } as any);
+
+      renderPage(wrapper);
+
+      expect(await screen.findByText('In Progress')).toBeInTheDocument();
+      expect(
+        screen.getByText('Configure to require organization members to sign in through your identity provider'),
+      ).toBeInTheDocument();
+      expect(screen.getByText(/you have started a configuration but haven.t finished/i)).toBeInTheDocument();
+      expect(screen.getByRole('button', { name: 'Continue configuration' })).toBeInTheDocument();
+
+      expect(screen.queryByRole('switch')).not.toBeInTheDocument();
+      expect(screen.queryByRole('button', { name: /open menu/i })).not.toBeInTheDocument();
+    });
+
+    it('renders the active state with the toggle on and the connection details', async () => {
+      const { wrapper, fixtures } = await createFixtures(withSecurityPageFixtures);
+
+      fixtures.clerk.organization?.getEnterpriseConnections.mockResolvedValue([configuredConnection({ active: true })]);
+      fixtures.clerk.organization?.getEnterpriseConnectionTestRuns.mockResolvedValue({
+        data: [{ id: 'run_1', status: 'success' }],
+        total_count: 1,
+      } as any);
+
+      renderPage(wrapper);
+
+      expect(await screen.findByText('Active')).toBeInTheDocument();
+      expect(
+        screen.getByText('Configure SSO to require organization members to sign in through your identity provider'),
+      ).toBeInTheDocument();
+
+      const ssoSwitch = screen.getByRole('switch', { name: 'Enable SSO' });
+      expect(ssoSwitch).toBeChecked();
+      expect(ssoSwitch).toBeEnabled();
+
+      expect(screen.getByText('Provider')).toBeInTheDocument();
+      expect(screen.getByText('Okta Workforce')).toBeInTheDocument();
+      expect(screen.getByText('Domain')).toBeInTheDocument();
+      expect(screen.getByText('clerk.com')).toBeInTheDocument();
+      expect(screen.getByText('Sign on URL')).toBeInTheDocument();
+      expect(screen.getByRole('link', { name: 'https://idp.example.com/sso' })).toHaveAttribute(
+        'href',
+        'https://idp.example.com/sso',
+      );
+      expect(screen.getByText('Issuer')).toBeInTheDocument();
+      expect(screen.getByRole('link', { name: 'https://idp.example.com/entity' })).toHaveAttribute(
+        'href',
+        'https://idp.example.com/entity',
+      );
+      expect(screen.getByText('Certificate')).toBeInTheDocument();
+      expect(screen.getByText('CERT')).toBeInTheDocument();
+
+      expect(screen.getByRole('button', { name: /open menu/i })).toBeInTheDocument();
+      expect(screen.queryByRole('button', { name: 'Start configuration' })).not.toBeInTheDocument();
+      expect(screen.queryByRole('button', { name: 'Continue configuration' })).not.toBeInTheDocument();
+      expect(screen.queryByText(/configuration details/i)).not.toBeInTheDocument();
+    });
+
+    it('renders the inactive state with the toggle off and a chip per domain', async () => {
+      const { wrapper, fixtures } = await createFixtures(withSecurityPageFixtures);
+
+      fixtures.clerk.organization?.getEnterpriseConnections.mockResolvedValue([
+        configuredConnection({ domains: ['github.com', 'gmail.com', 'maps.com', 'another.com'] }),
+      ]);
+      fixtures.clerk.organization?.getEnterpriseConnectionTestRuns.mockResolvedValue({
+        data: [{ id: 'run_1', status: 'success' }],
+        total_count: 1,
+      } as any);
+
+      renderPage(wrapper);
+
+      expect(await screen.findByText('Inactive')).toBeInTheDocument();
+
+      const ssoSwitch = screen.getByRole('switch', { name: 'Enable SSO' });
+      expect(ssoSwitch).not.toBeChecked();
+      // A successful test run satisfies the enable gate.
+      expect(ssoSwitch).toBeEnabled();
+
+      for (const domain of ['github.com', 'gmail.com', 'maps.com', 'another.com']) {
+        expect(screen.getByText(domain)).toBeInTheDocument();
+      }
+    });
+
+    it('renders long SAML values as truncating chips with full-value tooltips', async () => {
+      const longSsoUrl = `https://idp.example.com/sso/${'a'.repeat(280)}`;
+      const longCertificate = 'MIIC'.repeat(75);
+      const { wrapper, fixtures } = await createFixtures(withSecurityPageFixtures);
+
+      fixtures.clerk.organization?.getEnterpriseConnections.mockResolvedValue([
+        configuredConnection({
+          active: true,
+          samlConnection: {
+            idpSsoUrl: longSsoUrl,
+            idpEntityId: 'https://idp.example.com/entity',
+            idpCertificate: longCertificate,
+          },
+        }),
+      ]);
+      fixtures.clerk.organization?.getEnterpriseConnectionTestRuns.mockResolvedValue({
+        data: [{ id: 'run_1', status: 'success' }],
+        total_count: 1,
+      } as any);
+
+      renderPage(wrapper);
+
+      const ssoLink = await screen.findByRole('link', { name: longSsoUrl });
+      expect(ssoLink).toHaveAttribute('href', longSsoUrl);
+      // The full value stays reachable via the tooltip once the chip truncates visually.
+      expect(ssoLink).toHaveAttribute('title', longSsoUrl);
+      expect(ssoLink).toHaveStyle({ overflow: 'hidden', textOverflow: 'ellipsis', whiteSpace: 'nowrap' });
+
+      const certificate = screen.getByText(longCertificate);
+      expect(certificate).toHaveAttribute('title', longCertificate);
+      expect(certificate).toHaveStyle({ overflow: 'hidden', textOverflow: 'ellipsis', whiteSpace: 'nowrap' });
+    });
+  });
+
+  describe('view switching', () => {
+    it('switches to the wizard when Start configuration is clicked', async () => {
+      const { wrapper, fixtures } = await createFixtures(withSecurityPageFixtures);
+
+      fixtures.clerk.organization?.getEnterpriseConnections.mockResolvedValue([]);
+
+      const { userEvent } = renderPage(wrapper);
+
+      await userEvent.click(await screen.findByRole('button', { name: 'Start configuration' }));
+
+      expect(await screen.findByText(/select your identity provider/i)).toBeInTheDocument();
+      expect(screen.queryByRole('button', { name: 'Start configuration' })).not.toBeInTheDocument();
+    });
+
+    it('switches to the wizard when Edit is selected from the actions menu', async () => {
+      const { wrapper, fixtures } = await createFixtures(withSecurityPageFixtures);
+
+      fixtures.clerk.organization?.getEnterpriseConnections.mockResolvedValue([configuredConnection({ active: true })]);
+      fixtures.clerk.organization?.getEnterpriseConnectionTestRuns.mockResolvedValue({
+        data: [{ id: 'run_1', status: 'success' }],
+        total_count: 1,
+      } as any);
+
+      const { userEvent } = renderPage(wrapper);
+
+      await userEvent.click(await screen.findByRole('button', { name: /open menu/i }));
+      await userEvent.click(screen.getByRole('menuitem', { name: 'Edit' }));
+
+      // An active connection short-circuits the wizard to the confirmation step.
+      expect(await screen.findByText(/configuration details/i)).toBeInTheDocument();
+      expect(
+        screen.queryByText('Configure SSO to require organization members to sign in through your identity provider'),
+      ).not.toBeInTheDocument();
+    });
+  });
+
+  describe('actions menu', () => {
+    it('lists Edit and Delete, and Delete opens the type-to-confirm reset dialog', async () => {
+      const { wrapper, fixtures } = await createFixtures(withSecurityPageFixtures);
+
+      fixtures.clerk.organization?.getEnterpriseConnections.mockResolvedValue([configuredConnection({ active: true })]);
+      fixtures.clerk.organization?.getEnterpriseConnectionTestRuns.mockResolvedValue({
+        data: [],
+        total_count: 0,
+      } as any);
+      fixtures.clerk.organization?.deleteEnterpriseConnection.mockResolvedValue({} as any);
+
+      const { userEvent } = renderPage(wrapper);
+
+      await userEvent.click(await screen.findByRole('button', { name: /open menu/i }));
+      expect(screen.getByRole('menuitem', { name: 'Edit' })).toBeInTheDocument();
+      const deleteItem = screen.getByRole('menuitem', { name: 'Delete' });
+
+      await userEvent.click(deleteItem);
+      expect(await screen.findByRole('heading', { name: 'Reset connection' })).toBeInTheDocument();
+
+      // Type-to-confirm uses the organization name.
+      await userEvent.type(screen.getByLabelText(/below to continue/i), 'Org1');
+      await waitFor(() => expect(screen.getByRole('button', { name: 'Reset connection' })).toBeEnabled());
+      await userEvent.click(screen.getByRole('button', { name: 'Reset connection' }));
+
+      await waitFor(() => {
+        expect(fixtures.clerk.organization?.deleteEnterpriseConnection).toHaveBeenCalledWith('ent_1');
+      });
+    });
+  });
+
+  describe('Enable SSO toggle', () => {
+    it('flips optimistically, disables while saving, and settles on the server value', async () => {
+      const { wrapper, fixtures } = await createFixtures(withSecurityPageFixtures);
+
+      fixtures.clerk.organization?.getEnterpriseConnections.mockResolvedValue([configuredConnection({ active: true })]);
+      fixtures.clerk.organization?.getEnterpriseConnectionTestRuns.mockResolvedValue({
+        data: [],
+        total_count: 0,
+      } as any);
+
+      let resolveUpdate!: (value: unknown) => void;
+      fixtures.clerk.organization?.updateEnterpriseConnection.mockImplementation(
+        () => new Promise(resolve => (resolveUpdate = resolve)) as any,
+      );
+
+      const { userEvent } = renderPage(wrapper);
+
+      const ssoSwitch = await screen.findByRole('switch', { name: 'Enable SSO' });
+      expect(ssoSwitch).toBeChecked();
+
+      await userEvent.click(ssoSwitch);
+
+      expect(ssoSwitch).not.toBeChecked();
+      expect(ssoSwitch).toBeDisabled();
+      expect(fixtures.clerk.organization?.updateEnterpriseConnection).toHaveBeenCalledWith('ent_1', {
+        active: false,
+      });
+
+      resolveUpdate({ active: false });
+
+      await waitFor(() => expect(ssoSwitch).toBeEnabled());
+      expect(ssoSwitch).not.toBeChecked();
+    });
+
+    it('rolls back the toggle and surfaces the error when the update fails', async () => {
+      const { wrapper, fixtures } = await createFixtures(withSecurityPageFixtures);
+
+      fixtures.clerk.organization?.getEnterpriseConnections.mockResolvedValue([configuredConnection({ active: true })]);
+      fixtures.clerk.organization?.getEnterpriseConnectionTestRuns.mockResolvedValue({
+        data: [],
+        total_count: 0,
+      } as any);
+      fixtures.clerk.organization?.updateEnterpriseConnection.mockRejectedValue(
+        new ClerkAPIResponseError('Error', {
+          data: [
+            {
+              code: 'connection_update_failed',
+              long_message: 'The connection could not be updated',
+              message: 'update failed',
+            },
+          ],
+          status: 400,
+        }),
+      );
+
+      const { userEvent } = renderPage(wrapper);
+
+      const ssoSwitch = await screen.findByRole('switch', { name: 'Enable SSO' });
+      expect(ssoSwitch).toBeChecked();
+
+      await userEvent.click(ssoSwitch);
+
+      await waitFor(() => expect(ssoSwitch).toBeEnabled());
+      expect(ssoSwitch).toBeChecked();
+      expect(await screen.findByText('The connection could not be updated')).toBeInTheDocument();
+    });
+  });
+});
diff --git a/packages/ui/src/customizables/elementDescriptors.ts b/packages/ui/src/customizables/elementDescriptors.ts
index adb4644e66e..c47903bdf8c 100644
--- a/packages/ui/src/customizables/elementDescriptors.ts
+++ b/packages/ui/src/customizables/elementDescriptors.ts
@@ -223,6 +223,19 @@ export const APPEARANCE_KEYS = containsAllElementsConfigKeys([
   'organizationProfileMembersSearchInputIcon',
   'organizationProfileMembersSearchInput',
 
+  'organizationProfileSecuritySsoBadge',
+  'organizationProfileSecuritySsoDescription',
+  'organizationProfileSecuritySsoInProgressNotice',
+  'organizationProfileSecuritySsoConfigureButton',
+  'organizationProfileSecuritySsoEnableRow',
+  'organizationProfileSecuritySsoEnableLabel',
+  'organizationProfileSecuritySsoDetailRows',
+  'organizationProfileSecuritySsoDetailRow',
+  'organizationProfileSecuritySsoDetailRowLabel',
+  'organizationProfileSecuritySsoDetailRowChip',
+  'organizationProfileSecuritySsoDetailRowLink',
+  'organizationProfileSecuritySsoProviderIcon',
+
   'organizationListPreviewItems',
   'organizationListPreviewItem',
   'organizationListPreviewButton',
diff --git a/packages/ui/src/elements/Section.tsx b/packages/ui/src/elements/Section.tsx
index ce6ae5a5372..157a0236ae1 100644
--- a/packages/ui/src/elements/Section.tsx
+++ b/packages/ui/src/elements/Section.tsx
@@ -1,4 +1,5 @@
 import type { ProfileSectionId } from '@clerk/shared/types';
+import type { ReactNode } from 'react';
 import { forwardRef, isValidElement, useLayoutEffect, useRef, useState } from 'react';
 
 import type { LocalizationKey } from '../customizables';
@@ -16,10 +17,11 @@ type ProfileSectionProps = Omit<PropsOfComponent<typeof Flex>, 'title'> & {
   titleId?: string;
   centered?: boolean;
   id: ProfileSectionId;
+  badge?: ReactNode;
 };
 
 const ProfileSectionRoot = (props: ProfileSectionProps) => {
-  const { title, titleId, centered = true, children, id, sx, ...rest } = props;
+  const { title, titleId, centered = true, children, id, sx, badge, ...rest } = props;
   const ref = useRef<HTMLDivElement | null>(null);
   const [height, setHeight] = useState(0);
 
@@ -93,7 +95,10 @@ const ProfileSectionRoot = (props: ProfileSectionProps) => {
           elementId={descriptors.profileSectionTitle.setId(id)}
           textElementDescriptor={descriptors.profileSectionTitleText}
           textElementId={descriptors.profileSectionTitleText.setId(id)}
-        />
+          sx={badge ? t => ({ alignItems: 'center', gap: t.space.$2 }) : undefined}
+        >
+          {badge}
+        </SectionHeader>
       </Col>
     </Flex>
   );
@@ -353,7 +358,7 @@ type SectionHeaderProps = PropsOfComponent<typeof Flex> & {
 };
 
 export const SectionHeader = (props: SectionHeaderProps) => {
-  const { textElementDescriptor, textElementId, textId, localizationKey, ...rest } = props;
+  const { textElementDescriptor, textElementId, textId, localizationKey, children, ...rest } = props;
   return (
     <Flex {...rest}>
       <Text
@@ -363,6 +368,7 @@ export const SectionHeader = (props: SectionHeaderProps) => {
         elementDescriptor={textElementDescriptor}
         elementId={textElementId}
       />
+      {children}
     </Flex>
   );
 };
diff --git a/packages/ui/src/internal/appearance.ts b/packages/ui/src/internal/appearance.ts
index 512d0dd8e5c..0e9427eccee 100644
--- a/packages/ui/src/internal/appearance.ts
+++ b/packages/ui/src/internal/appearance.ts
@@ -363,6 +363,19 @@ export type ElementsConfig = {
   organizationProfileMembersSearchInputIcon: WithOptions;
   organizationProfileMembersSearchInput: WithOptions;
 
+  organizationProfileSecuritySsoBadge: WithOptions<string>;
+  organizationProfileSecuritySsoDescription: WithOptions;
+  organizationProfileSecuritySsoInProgressNotice: WithOptions;
+  organizationProfileSecuritySsoConfigureButton: WithOptions<string>;
+  organizationProfileSecuritySsoEnableRow: WithOptions;
+  organizationProfileSecuritySsoEnableLabel: WithOptions;
+  organizationProfileSecuritySsoDetailRows: WithOptions;
+  organizationProfileSecuritySsoDetailRow: WithOptions<string>;
+  organizationProfileSecuritySsoDetailRowLabel: WithOptions<string>;
+  organizationProfileSecuritySsoDetailRowChip: WithOptions<string>;
+  organizationProfileSecuritySsoDetailRowLink: WithOptions<string>;
+  organizationProfileSecuritySsoProviderIcon: WithOptions;
+
   organizationListPreviewItems: WithOptions;
   organizationListPreviewItem: WithOptions;
   organizationListPreviewButton: WithOptions;