Azure Active Directory (Azure AD), now also known as Microsoft Entra ID, is Microsoft's robust identity and access management solution trusted by organizations worldwide. TrackingTime users can leverage the power of Azure AD to streamline their login experience, automate user provisioning, enhance security, and improve overall user satisfaction.
How to configure SSO
Here’s how to configure SSO with Microsoft Azure Active Directory (aka Microsoft Entra ID) in TrackingTime.
How to sign in using SSO
Here’s how users can sign in into a workspace using SSO.
If you’re having issues logging in, please contact your Microsoft’s account administrator.
SCIM (System for Cross-domain Identity Management) Provisioning is a crucial feature in Single Sign-On (SSO) implementations with Azure AD. It simplifies user management, enabling organizations to automate the provisioning and deprovisioning of users across various applications and services.
What is SCIM Provisioning?
SCIM is an open standard protocol designed for user provisioning and management across different systems. It allows for the automation of user onboarding, offboarding, and attribute synchronization between Azure AD and other SSO-enabled applications like TrackingTime.
SCIM ensures that user information is always up to date and consistent, reducing administrative overhead and enhancing security.
How to enable SCIM Provisioning
Here’s how to enable SCIM Provisioning in your workspace.
Once the process is completed, the users that you’ve specified in Azure AD will be able to log into your TrackingTime workspace.
How does SCIM Provisioning work?
Azure AD monitors events such as user creation, modification, and deletion. When a relevant event occurs, Azure AD sends a SCIM request to TrackingTime.
Currently, we support the following events:
When a user is added to the TrackingTime SSO app, the user will be automatically added to your TrackingTime workspace.
When a user in your TrackingTime SSO app is updated, the information (first name, last name, email) will be automatically synced with TrackingTime. The default user role for new users is Project Manager. Learn more about user roles and permissions.
When you remove a user from your TrackingTime SSO app, the user will be archived in your TrackingTime workspace and will no longer be able to log into your workspace. Learn more about archiving users.
Do you support other SAML Identity Providers?
No, we currently don’t support other SAML Identity Providers. We’ll be adding support for Google SSO and other SAML Identity Providers in the near future.
Can I use SSO with my PRO subscription?
SSO with Azure AD is only available on our Business plan. If you’d like to enable SSO in your workspace, please contact us.