Enterprise SSO

Enterprise SSO

Introduction

We are excited to introduce Enterprise Single Sign-On (SSO) to our customers. SSO is a powerful and effective solution that simplifies the process of accessing multiple applications and services. By providing a centralized and secure login mechanism, SSO eliminates the need for users to remember multiple usernames and passwords, saving time and improving the user experience.

According to estimates from Statista’s Cybersecurity Outlook, the global cost of cybercrime is expected to surge in the next few years, rising from $8.44 trillion in 2022 to $23.84 trillion by 2027 (https://www.statista.com/chart/28878/expected-cost-of-cybercrime-until-2027/). SSO can prevent many different forms of fraud, including unauthorized access, phishing attacks, and password-related security incidents (https://www.veriff.com/blog/the-cost-of-fraud).


Why use SSO?

There are many benefits of SSO, including:

  1. Cost reduction through IT and Helpdesk efficiencies: SSO allows administrators to manage user access to multiple applications and services from a single location, reducing the time and effort required to manage access to each individual application.
  2. Improved security: When an employee leaves your organization, it's important to ensure that their access to sensitive information is promptly revoked to prevent any potential security breaches. With SSO, this process becomes much simpler and more efficient.
  3. More control: With SSO, you can set your own password complexity, length, and MFA policies for your users.
  4. Better compliance and auditability: SSO makes it easier for administrators to monitor and audit user activity, ensuring compliance with industry regulations and security policies.
  5. Increased adoption of new applications and services: By providing a streamlined login process, SSO makes it easier for users to adopt new applications and services, increasing the overall value of your IT investments.

How does SSO work?

Our Enterprise SSO solution works by connecting your organization's existing Identity Provider (IdP), such as Active Directory, and linking it to CM.com's applications and services. Users can then access CM.com with just one set of credentials, eliminating the need to remember multiple passwords.

CM.com's Enterprise SSO supports the industry-standard OpenID Connect (OIDC) protocol and can be easily integrated.

SSO only handles user's authentication. What organizations/accounts a user has access to and what roles the user has should be managed via CM.com’s user management portal.


Supported Features

CM.com's Enterprise SSO supports the following features:

  1. Integration with a range of Identity Providers with the OpenID Connect (OIDC) protocol, including Active Directory, Azure AD and Okta.
  2. Just-In-Time (JIT) provisioning. Users logging in or accepting invites that have access (as configured in the IdP) but do not have a user account yet, will have their user accounts created automatically. They just need to be invited via CM.com's user management to gain access to the desired accounts.
  3. Enforcing login via SSO based on your organization's email domain. Once SSO is enabled for your email domain, users can no longer login using their password. They can only login via SSO.
  4. Support for multiple email domains, so all employees in your organization can be configured to login via SSO.
  5. Enable SSO for specific users when you want to test the SSO implementation, so you can be sure everything is set up correctly before enabling it for all your users.

SSO for your organization

Our SSO solution has benefits that large enterprises and even startups may take advantage of. The solution is very advantageous and well-suited for our customers who have a significant number of application users and will see a high return on investment.

For more information, please talk to sales or [contact support] (https://www.cm.com/contact/support/). Ready to start implementing SSO? Read our implementation guide [here] (https://developers.cm.com/messaging/page/enterprise-sso-implementation-guide).