Microsoft Azure Active Directory Single-Sign-On (SSO) Integration

Learn how to integrate connected via your company's Azure Active Directory.

Shoshana Fleischmann avatar
Written by Shoshana Fleischmann
Updated over a week ago

SSO (Single Sign-On) is a method of signing your users into a platform with an existing user base that your organization already has (e.g. Microsoft, Google). Using SSO can ensure a flawless login process for your organization as well as heighten your company's security.

In this article, we will discuss

What are the benefits of using SSO?

There are many benefits of using a single sign-on service.

These include:

  • Employees can sign on and authenticate via one service.

  • Adds another layer of security

  • Adding and removing employees from your organization can be done from your own user management tool such as Active Directory. This enables you to prevent the user from entering connecteam without needing to remove them from connecteam.

What are the prerequisites to using SSO?

Currently, the prerequisites to using SSO are that you need to be using Microsoft's Azure Active Directory as your single service provider. In Connecteam the capability to integrate with Azure is only available if you are on the Enterprise Plan.

How to Set Up SSO Step by Step

In order to set up SSO first navigate to your General Settings, under your avatar in the top right corner. Then enter the security settings and toggle on the SSO option.

After that, you will need to follow these steps:

Step 1: Log in to Azure portal:

Step 2: Navigate to the Azure Active Directory button on the side menu, then select the App Registrations and select the New Registration option.

Step 3: Under the Name Section enter a name, this can be Connecteam or any other name you would like to call this registration.

Step 4: Then make sure the option of Accounts only in this directory is selected.

Step 5: Under the Redirect URI section select web as the platform and paste the URL found in the Connecteam Security app tab.

Step 6: Select Register at the bottom.

Following this you will be redirected to the app registration screen of the app you just created. To finish setting up the SSO you will need to follow these steps:

Step 1: Copy the Client ID from the registration screen and paste it into the Connecteam Security SSO Settings.

Step 2: Then navigate to certificates and secrets on the left sidebar and select the option to create a new secret.

Step 3: Create a new client secret and decide after how many months you want the secret to expire and select add.

A new secret will be generated which you will copy and paste into the Connecteam Security SSO Settings. Please note that the first time you are setting up SSO you will need to copy the client secret immediately or it will be lost!

Once you are finished copying your client secret into the Connecteam Security Settings be sure to Save your changes. That's it your SSO setup is now complete and you can begin using it to log into your Connecteam account.

Pro tip: SSO can only be set up by owners!

What does the login process look like when integrated with Azure Active Directory?

After setting up SSO an admin goes to connecteam to login. They begin the login process as normal by entering their phone number. Only during the first time they log in they will select the option to log in via email instead of entering the code they receive. Here they will be presented with a screen requesting theta accept permissions to use their Microsoft Azure Active Directory Account to log in. Upon selecting accept they will be automatically redirected to Connecteam.

Following the first log in admins will simply enter their phone number and be automatically redirected to their Microsoft Azure account. Once they log in in Azure they will also be automatically logged into the Connecteam Dashboard.

Pro tip: SSO login can only be used on the desktop and is currently only available for admins!

Need more guidance? 🙋 Our LIVE support team (at the bottom right corner of your screen) replies in under 5 mins to ANY question.

Did this answer your question?