Single Sign-On (SSO) in the MSR portal

You can offer portal users the option to log in to the MSR portal using an external identity provider, such as the Microsoft Online account. MSR-728 | May 2024

For whom is this feature?

Customers who want to offer their employees the option of single sign-on with an external identity provider such as the Microsoft Online account. In principle, MSR supports all external identity providers that utilize the OpenID Connect protocol.

Benefits

  • The login process is simplified.
  • Employees become more productive.
  • The sign-in procedure for the portal becomes even more secure.

  

Clarification of this new feature

Until now, a user had to log in to the MSR portal with their username and either a password or a single-use code. In addition to these methods, we are now introducing the option to log in with a Microsoft Online account. This is called Single Sign-On (SSO).

When this function is activated, users will see an (extra) login button that lets them log in with their Microsoft account. If desired, the existing login methods will remain available as well. If a user cannot log in with their Microsoft Online account, they can still use their username and password or single-use code.

As an organization, you can also opt to only allow users to log in via SSO. An extra setting has been added for this. After activating this option, users will only see a ‘Log in (SSO)’ button and the standard login screen will no longer appear.


Setup

Before this functionality can be implemented, it must be activated in the Mysolution Cloud by one of the members of the Mysolution Tech team. If you want to use this option, you can contact us via the Mysolution Self-Service Portal. 

An extra setting has been added to only allow users to log in via SSO. This setting can be found in the custom metadata, Portal Domain, 'Only allow external login'. After activating this option, portal domain visitors will only see a ‘Log in (SSO)’ button and the standard login screen will no longer appear.

To add the desired label to the ‘Single Sign-On’ button, an extra portal translation key has been added: LoginMysAzureADB2CButton.

Feature Implementation Time (FIT)

  • Very easy implementation: Implementation time < 30 minutes

  🔗 Here you can find the key features from the May 2024 Release