AD connection and single sign-on

Anybody who has ever introduced a new software into their organization knows one thing all too well: Providing user data can be cumbersome and users generally, complain about another login. SoSafe now offers automated user provisioning and single sign-on (SSO).

The problem with user data

Everyone who has ever provided a group of employees in their organization with a new software knows how inconvenient it is to manually export user data from the Active Directory and then upload it to the provider’s databases. From then on, the lists need to be continuously and manually updated to ensure that only current employees can access the software. A new colleague joins the team? Another colleague retires? Someone changes position? The user data needs to be adjusted and synchronized with the information that was previously shared with the software provider. That is a lot of extra work that can easily be avoided.

Automated user data transfer with Azure AD

The solution for this problem: User provisioning via a connection to your Microsoft Azure Active Directory (AD). Organizations who use Active Directory are often already synchronized to the cloud-based Azure Active Directory. They are just one step away from automating user provisioning. In the Microsoft Store, SaaS products can be registered which then allows for a connection to your organization’s Active Directory. That is now also possiblewith SoSafe!We use the SCIM standard to establish a connection to the Microsoft servers.

The details: How does it work?

  • If you use or are considering using one of our managed service packages (Essential, Professional, Premium), you can have the AD connection activated by additionally booking our Enterprise option.
  • You then establish a connection between our user database and your Azure AD via the Microsoft Azure Application Store.
  • As a SaaS provider, SoSafe now initially receives all user data that you approved for this use.
  • By using filters and security groups you can explicitly control which data we should receive.
  • Microsoft now automatically synchronizes the data from your Active Directory with our SoSafe user database several times each day.
  • Should you make any changes, they will also be processed accordingly in our systems, e.g., access to our awareness solutions will automatically be blocked or reactivated. Inactive accounts will be deleted.

After the initial set-up, the user provisioning runs completely automatically with a connection to your Microsoft Azure Active Directory – for you and for us. The user data is always up to date and endless spreadsheets are a thing of the past.

To our awareness packages

Not another login: SSO with Azure AD

SoSafe now also enables you to set up a single sign-on for your colleagues via the Azure Application Store. If you use this option, employees no longer have to register and log into SoSafe after their initial Microsoft login. This option is especially convenient if other Microsoft products such as Microsoft 365 are already in use in your organization.

How does it work?

  • When new users log into SoSafe via single sign-on, the data is checked against your Active Directory.
  • Microsoft then uses the email address to verify that the user belongs to your organization and is permitted access to our applications. You can determine and control the respective criteria.
  • If thelogin data fulfills the criteria, users are automatically activated and logged in without having to enter another password and without any other additional registration steps.

Users can then directly start their cyber security awareness training. As soon as you update the user data in your Active Directory, access rights are updated as well. In other words: The setup of our software is further streamlined with SSO and centralized in the Azure AD.

Do you have any further questions or are you interested in our awareness solutions?

Feel free to contact us.

Über SoSafe

Die Awareness-Plattform von SoSafe sensibilisiert und schult Mitarbeitende kontinuierlich im Umgang mit den Themen IT-Sicherheit und Datenschutz. Phishing-Simulationen und interaktive E-Learnings bringen den Mitarbeitenden auf effektive und nachhaltige Art und Weise bei, worauf etwa bei der Nutzung von E-Mails, Passwörtern oder personenbezogenen Daten besonders zu achten ist. Das Unternehmen erhält ein anonymes, aber differenziertes Reporting und kann Awareness-Building so messbar machen – vollkommen DSGVO-konform.