Single Sign On (SSO)
Learn how to configure SSO for your Netcore CPaaS dashboard using Microsoft Azure (Entra).
Overview
SSO allows users to log in once using a centralized authentication system (such as Azure AD) and access multiple connected applications without re-entering credentials. Enable SSO to help brands streamline user access using their existing Identity Provider (IdP), such as Microsoft Azure (Entra). This guide will help you understand, configure, and use SSO effectively within the Netcore CPaaS dashboard.
Note
- Currently, Microsoft Entra ID is supported as an Identity Provider (IdP). For support with other IdPs, please contact [email protected].
- If your organization uses SSO and you would like to enable it for your Netcore account, we will take care of the setup for you. To get started, please reach out to us at [email protected].
- The user’s email must exist in the Netcore panel for SSO to work. If a user is present in the client’s SSO system but not in Netcore, the login attempt will fail.
- Once SSO is enabled for a Netcore panel, previous login methods, including email / password and 2FA are disabled. Users must sign in through SSO to access the panel.
Refer to the given table to know the difference between SSO and traditional login.
| Feature | Traditional Login | SSO Login |
|---|---|---|
| Authentication Source | Netcore login system | External Identity Provider such as Microsoft Azure (Entra) |
| User Input | Email + Password | Work Email only and Netcore CPaaS account name (initially) |
| Credential Management | Managed separately for Netcore | Managed centrally by the organization |
| Security | Can vary by user | Centralized security policies like MFA, session control, and so on. |
| User Experience | Must remember Netcore credentials | Seamless access using corporate credentials |
Benefits of SSO
- Centralized Security: Authenticate users through your IdP for improved security.
- Simplified Access: Users no longer need to remember multiple credentials.
- Enterprise-Ready: Supports leading providers like Microsoft Azure and follows SAML 2.0 protocol.
Prerequisites for SSO
You use an Identity Provider (IdP) or a custom SAML (Security Assertion Markup Language) implementation.
SSO Workflow
Follow the given steps.
- Click "Log in with SSO" on the Netcore CPaaS login page.
- Enter your Work Email.
- If the dashboard is SSO-enabled, you are redirected to the IdP login page.
- Upon successful authentication, you are redirected back to the Netcore CPaaS dashboard.
Common Errors and Messages
Refer to the given table to know the common failure reasons for SSO.
| Scenario | Message |
|---|---|
| Panel is not SSO-enabled | This account is not configured for SSO. |
| Email not linked to SSO | This email is not configured for SSO. |
| Duplicate usernames for one email | It seems that multiple user names are associated with this email ID. Please contact your admin or Netcore support. |
| IdP authentication failure | Login failed due to incorrect credentials. |
| Redirection fails | Unable to connect to your identity provider. Please try again later. |
| Session expired | Your session has expired. Please log in again. |
Rollback from SSO
If the admin disables SSO:
- Users receive an email with a temporary password.
- Users can then reset the password.
- All SSO-specific settings are deactivated.
FAQs
Q: Can I log in without SSO after it's enabled?
A: No. Once SSO is active, users' email/password login is disabled. Only the admin login continues to work if allowed.
Q: What happens to users with multiple usernames?
A: SSO will throw an error. The admin must clean up duplicates for a smooth login.
Q: How do I revert from SSO?
A: Raise ticket to [email protected]. to disable SSO.
Updated about 6 hours ago