Using Single Sign-On makes your organization's projects in Imerso more secure by controlling who can access them. With Microsoft SSO, you can easily decide who gets in and who doesn't, as well as approved Multi Factor Authentication methods to be used, all from the Microsoft Entra admin center.
Signing up and logging in with a Microsoft account
You can sign up or log in to Imerso using your Microsoft account. This feature allows for organizations to keep one login system while using Imerso.
Sign Up: If you are new to Imerso, you can use your Microsoft account to sign up. Click on the Microsoft login tab when going to the sign-up page from your project invitation, and once you have logged in successfully on Microsoft, your Imerso account will be created.
Log In: If you have already linked your Microsoft account with your Imerso account, log in using your Microsoft credentials.
Linking your existing Imerso account with Microsoft
If you already have an Imerso account and want to use your Microsoft account for login in, you can link the two accounts:
Log in to Imerso with your usual credentials.
Go to your Account Settings page.
Click on the Link Microsoft Account button and follow the prompts to log in into your Microsoft account.
Once linked, you will be logging in using your Microsoft account instead of entering your Imerso credentials.
Enforcing use of Microsoft SSO in your organization
π‘ Only Organization Admins are able to enforce this, and it's applied to all projects under the organization inside of Imerso
Enabling Single Sign-On (SSO) is optional, anyone can choose to turn it on if they want to.
β
You can also enforce SSO with Microsoft if you're an Organization Admin, as the only way to sign-up and login for all users that are part of any project in Imerso under your organization. Just follow these steps:
β
If you signed up to Imerso without your Microsoft account, first you have to link your Imerso account with the Microsoft one, as explained in the previous section. Once done, or if you already signed up to Imerso using your Microsoft account, see the next step.
Navigate to Organization > Security settings, and in the Single Sign-On section click on the "Add domain" button.
β
Add the domain(s) that would be allowed to sign-up and login to all the projects inside the organization (a domain is what comes after the @ sign in an email address. For instance, the domain of [email protected] would be bim.com). Remember to add the domain of your own Imerso account.
Once at least one domain has been added, you can select the Single Sign-On option. The effects takes place as soon as the option is selected.
β οΈ Be careful! Once SSO with Microsoft is being enforced, existing users with email domains not in the allowed list will not be able to log in anymore!
Managing Microsoft Entra consent
When signing-up or logging into Imerso using a Microsoft account, you may get a permission request. Depending on your organization's Entra configuration, this permission might be accepted by you:
β
Or it might need an Entra Admin acceptance first. Write a message to your admin in the justification field and click on "Request approval". Once they have granted the permission you will be able to use SSO with Microsoft on Imerso.
Lastly, if you're an Entra Admin yourself, you will have the option to grant the permission for all users in the organization so they won't have to accept these permissions in the future.
β
π‘ Imerso's application ID in Microsoft Entra is c178e3a5-2ac4-444d-96ec-b2074392dcd3