No matter how you like to participate in developer communities, Pulumi wants to meet you there. If you want to meet other Pulumi users to share use-cases and best practices, contribute code or documentation, see us at an event, or just tell a story about something cool you did with Pulumi, you are part of our community.

Pulumi Community

Great questions.

SSO via AD does support teams at the AD level, not GitHub level.

In the near term though, if your users are members of both GitHub orgs, things should "just work" here.  That scenario is pretty common, and allows each org to set policy independently.

just not understanding how that works in the UI

if I try to add another org it wants me to sign up

That's right - each GitHub org would need to sign up for a Pulumi subscription.  Once they are signed up, users who are members of both orgs will see both orgs (along with their personal "org") listed in the "Select Organization" drop down in the Pulumi console UI.

in the meantime though, a Github org = Pulumi org

<@UB3BGTV63> with regards to RBAC in Pulumi - within the UI will it enumerate all domain groups?  What's the nature of that connection?  Finding out in advance because it will mean wrangling with corporate IT

Sorry for the delay.

&gt; will it enumerate all domain groups

Do you mean for SAML/AD integration?  We are using SCIM (<https://tools.ietf.org/html/draft-ietf-scim-api-19>) to sync user/group information.