Single sign-on

In this article

    Single sign-on (SSO) allows users to access multiple services with a single set of credentials. On the plus side, it facilitates a smoother user experience. On the flip side, you'll be more exposed if you lose "the keys to the castle".

    Cookies are a very basic form of SSO

    1. You sign in to SuperOffice in one browser tab.

    2. This creates a session and the browser stores a cookie.

    3. You open a second tab and go to SuperOffice.

    4. The browser checks the session cookie and grants you access without asking you to sign in again.

    Federated identity takes SSO a step further

    With a federated ID, you sign in once with this ID, and as long as the session is valid, you can access all other services that trust this identity provider without having to sign in again. In some cases, the user needs to give consent the 1st time they sign in to a new service provider with an IdP.

    1. You sign in to your Microsoft email online.

    2. You get a hall-pass in your browser's cookie jar.

    3. You navigate to SuperOffice - and boom - you're in!

    Note that this is not the same as using the same username and password to sign in to different services! (Which is actually bad password hygiene.)

    What are my SSO options with SuperOffice?

    • CRM online SuperID password sign-in

    • CRM online SuperID wtih IdP; 3rd-party identity providers: Microsoft and Google

    • SuperOffice Onsite with SSO

    Read more about our sign-in services