diff --git a/docs.json b/docs.json
index 212a365..92e5426 100644
--- a/docs.json
+++ b/docs.json
@@ -59,7 +59,8 @@
                 "group": "Access Control",
                 "pages": [
                   "manage/access-control/rules",
-                  "manage/access-control/forwarded-headers"
+                  "manage/access-control/forwarded-headers",
+                  "manage/access-control/login-page"
                 ]
               },
               {
diff --git a/images/org-auth-page.png b/images/org-auth-page.png
new file mode 100644
index 0000000..6c07128
Binary files /dev/null and b/images/org-auth-page.png differ
diff --git a/images/set-org-auth-page-domain.png b/images/set-org-auth-page-domain.png
new file mode 100644
index 0000000..d636080
Binary files /dev/null and b/images/set-org-auth-page-domain.png differ
diff --git a/manage/access-control/login-page.mdx b/manage/access-control/login-page.mdx
new file mode 100644
index 0000000..23aa223
--- /dev/null
+++ b/manage/access-control/login-page.mdx
@@ -0,0 +1,50 @@
+---
+title: "Custom Login Page"
+description: "Configure a custom authentication page URL for your organization"
+---
+
+<Note>
+Custom auth pages are only available in managed self-hosted nodes or in the cloud.
+</Note>
+
+Custom organization authentication pages let you serve the login page at your own domain instead of the default `pangolin.fossorial.io`. This provides better user experience and brand consistency.
+
+<iframe
+  className="w-full aspect-video rounded-xl"
+  src="https://www.youtube.com/embed/fD-NpigE4Vw?si=M5BBiqoKRWSZNGU1"
+  title="YouTube video player"
+  frameBorder="0"
+  allow="accelerometer; autoplay; clipboard-write; encrypted-media; gyroscope; picture-in-picture"
+  allowFullScreen
+></iframe>
+
+## Benefits
+
+**For Resource Authentication:**
+- Users are redirected to your custom domain for login
+- Familiar domain builds trust and security awareness
+- Consistent branding throughout the authentication flow
+
+**For Identity Provider Integration:**
+- Centralized login page for your organization
+- Choose between multiple login methods (Google, Azure, etc.)
+- Platform SSO: login once, access all Pangolin resources
+- Direct access to the Pangolin management dashboard
+
+<Frame>
+  <img src="/images/org-auth-page.png" />
+</Frame>
+
+## Configuration
+
+1. Go to **Settings** in your organization sidebar
+2. Use the domain picker to select your custom domain
+3. Save your changes
+
+<Note>
+You need to add a custom domain to your organization first. Free domains (`*.tunneled.to`, `*.hostlocal.app`, etc.) cannot be used for auth pages. [Learn how to add domains](/manage/domains#adding-domains)
+</Note>
+
+<Frame>
+  <img src="/images/set-org-auth-page-domain.png" />
+</Frame>
diff --git a/manage/identity-providers/add-an-idp.mdx b/manage/identity-providers/add-an-idp.mdx
index 05b9a25..52bab9e 100644
--- a/manage/identity-providers/add-an-idp.mdx
+++ b/manage/identity-providers/add-an-idp.mdx
@@ -81,6 +81,10 @@ Integrate with Microsoft's enterprise identity platform to allow users to authen
 
 In the Community Edition, identity providers are created and managed via the Server Admin UI rather than the organization settings.
 
+## Custom Login Page
+
+You can [configure a custom login page](/manage/access-control/login-page) for your organization to be served at a domain of your choice. The log in page for every resource will be served at this URL. Additionally, you can visit this url to log in to the organization itself to access the Pangolin dashboard. This is particularly useful for identity providers because it creates a place for your users to go to select the identity provider of choice to access the Pangolin dashboard.
+
 ## Auto Provisioning
 
 See [Auto Provision](/manage/identity-providers/auto-provisioning) for more information on how to automatically provision users and assign orgs and roles in Pangolin when they log in using an external identity provider.