Skip to main content
All CollectionsWhat's New?2020
Vuelio Single Sign-On (SSO)
Vuelio Single Sign-On (SSO)
Stefan avatar
Written by Stefan
Updated over a year ago

Introduction - What is SSO?

Single sign-on (SSO) is an important cloud security technology that reduces all user application logins to one login for greater security and convenience.

With SSO, a user only has to enter their login credentials (username, password, etc) one time on a single page to access all of their organisations SaaS products (e.g. Outlook, Vuelio).

Using SSO allows you to use additional securities adopted by your organisation, such as multi-factor authentication. Microsoft go as far as stating that MFA can prevent 99.9% of cyber-attacks on user accounts

Why is SSO important?

  1. Stronger Passwords: Since users only have to use one password, SSO makes it easier for them to create, remember, and use stronger passwords.

  2. No Repeated Passwords: When users have to remember passwords for several different apps and services, a condition known as "password fatigue" is likely to set in: users will re-use passwords across services. Using the same password across several services is a huge security risk because it means that all services are only as secure as the service with the weakest password protection: if that service's password database is compromised, attackers can use the password to hack all of the user's other services as well. SSO eliminates this scenario by reducing all logins down to one login.

  3. Better Password Policy Enforcement: Client’s IT Teams can manage all of their user passwords across all of their SaaS products at once, rather than having to review them individually. For example, the client’s IT Team can add MFA to their SSO policy and it would add MFA protection for all SaaS products. This is a big time save for them and is far more secure for their business data.

  4. Password Storage: With SSO, user passwords are stored in one place rather than being scattered across supplier infrastructure. This reduces the risk of a password breach.

What type of SSO does Vuelio support?

There are different types of SSO technology. You will hear requests for SAML or Federated logins (FIM).

Vuelio UK has: OAuth 2.0 with Microsoft Azure Active Directory (Azure AD).

SSO is available to Vuelio UK and AU clients, in addition to Pulsar clients.

SSO is not available on ResponseSource, and we are not planning to add any other ‘types’ just yet, such as SAML.

How to Use - SSO Enabled

Once enabled, you'll log in as normal via app.vuelio.com and this will redirect you to an extra Microsoft login (like the one below) where you'll need to use your regular internal credentials, before successfully returning to your Vuelio account.

  1. Access https://app.vuelio.com/ as normal.


  2. If SSO has been successfully enabled, you’ll be directed to your organisations Microsoft ‘Active Directory’ login screen.

    Enter your organisations username and password:

  3. Some organisations will also enforce 2FA/MFA, such as receiving a text message, along with their internal credentials:

  4. A prompt may ask for permission to access basic user information to ensure successful use of the Vuelio application. Click Accept.

  5. Confirm your Display Name - this is usually your first + last name.

  6. (Optional) If you manage multiple accounts, they will be displayed here. Inactive accounts can also be viewed. Select the appropriate client to log into that account.

  7. You’re in! You may now continue to use Vuelio as normal.



FAQ

Q: Which clients are eligible for SSO?
A: All Vuelio clients are eligible provided they currently log in via app.vuelio.com or app.vuelio.com.au

Q: Can we enable MFA/2FA whilst using SSO?
A: Once SSO is enabled, MFA is now managed entirely by the client and may automatically include 2FA. Vuelio MFA is no longer used in this scenario.

Q: Do we sell SSO as an addon?
A: No - this is a free optional extra at no additional cost to the client.

Q: Can I integrate SSO via Facebook/Google/Salesforce etc
A: No - we currently only support OAuth via Azure Active Directory.

Q: Can I continue to use Vuelio on a mobile or tablet device?
A: Yes - this does not change once SSO is enabled.

Q: Are my login credentials stored in Vuelio?
A: No - login credentials are not stored within Vuelio. Authentication via SSO occurs within the organisations' own login screen and active directory before returning to Vuelio.

Did this answer your question?