PeopleTray supports Single Sign-On (SSO) for both its web and mobile applications.
Single Sign-On (SSO) simplifies access to multiple apps by allowing users to log in once using a single username and password. It reduces the hassle of remembering numerous passwords and enhances security. Here’s how SSO works:
- Initial Login: Users log in once with their primary credentials (e.g., email and password) at the start of their workday. This can be done through a centralised authentication portal like Azure AD (Entra ID), Okta, or another SSO provider.
- Accessing Applications: After authentication, users can access any connected application without re-entering their credentials.
Configuring a PeopleTray Account for SSO:
To access PeopleTray web or mobile using SSO, customers must first have SSO configured and operational within their business.
Configuring for Web:
- The PeopleTray development team sends a document to the customer, requesting the necessary credentials to add SSO configuration to their PeopleTray account.
- Once received, these credentials are added to the customer’s account configuration.
- No changes are needed in PeopleTray settings.
- After configuration, PeopleTray can be added to the application options in the customer’s SSO system, allowing users to open applications without re-entering credentials.
- SSO doesn’t prevent users from signing in with their username and password if they’ve registered previously.
- Contractors using PeopleTray won’t be in the customer’s SSO system and need separate invitations to register and sign in.
Configuring for Mobile:
- The PeopleTray development team provides credentials for mobile app SSO to the customer’s global admin system.
- By default, all account users are prompted to use SSO tools for sign-in, including multi-factor authentication (MFA) if configured.
- PeopleTray allows bypassing SSO for mobile app access by contractors not managed in the customer’s SSO system.
What is Multifactor Authentication?
Multifactor authentication (MFA), also known as two-factor authentication (2FA) or multiple-factor authentication, is a security measure that requires users to provide multiple forms of identification or credentials to verify their identity. It adds an extra layer of security beyond the traditional username and password combination.
MFA Configuration:
- Customers configure MFA (Multi-Factor Authentication) in their Azure Active Directory (AAD) system.
- For accessing PeopleTray, MFA doesn’t impact the sign-in process because it’s integrated with the customer’s identity management and access system.
- Once signed in, users have access to all software applications they’re permitted to use.