Skip to main content
All CollectionsGetting started
Single Sign-On (SSO)
Single Sign-On (SSO)

How to use Single Sign-On (SSO) with a Microsoft account

Updated over 2 weeks ago

Using Single-Sign-On makes your organization's projects in Imerso more secure by controlling who can access them. With Microsoft SSO, you can easily decide who gets in and who doesn't, as well as approved Multi Factor Authentication methods to be used, all from the Microsoft Entra admin center.

Signing up and logging in with a Microsoft account

You can sign up or log in to Imerso using your Microsoft account. This feature allows for organizations to keep one login system while using Imerso.

  1. Sign Up: If you are new to Imerso, you can use your Microsoft account to sign up. Click on the Microsoft login tab when going to the sign-up page from your project invitation, and once you have logged in succesfully on Microsoft, your Imerso account will be created.

  2. Log In: If you have already linked your Microsoft account with your Imerso account, log in using your Microsoft credentials.

Linking your existing Imerso account with Microsoft

If you already have an Imerso account and want to use your Microsoft account for login in, you can link the two accounts:

  1. Log in to Imerso with your usual credentials.

  2. Go to your Account Settings page.

  3. Click on the Link Microsoft Account button and follow the prompts to log in into your Microsoft account.

Once linked, you will be logging in using your Microsoft account instead of entering your Imerso credentials.

Enforcing use of Microsoft SSO

πŸ’‘ Only Organization Admins are able to enforce this, and it's applied to all projects under the organization inside of Imerso

Enabling Single-Sign-On (SSO) is optional, anyone can choose to turn it on if they want to.
​
But if you're an Organization Admin you can enforce SSO with Microsoft as the only way to sign-up and login in Imerso, just follow these steps:
​

  1. If you signed up to Imerso without your Microsoft account, first you have to link your Imerso account with the Microsoft one as explained in the previous section. Once done, or if you already signed up to Imerso using your Microsoft account, continue to step two.

  2. Navigate to Organization > Security settings and in the Single Sign-On entry click on the "Add domain" button.
    ​

  3. Add the domain(s) that would be allowed to sign-up and login to all the projects inside the organization (a domain is what comes after the @ sign in an email address. Eg, the domain of [email protected] would be bim.com)

  4. Select the Single sign-on option. The effects takes place as soon as the option is selected.

⚠️ Be careful! Once SSO with Microsoft is being enforced, existing users with email domains not in the allowed list won't be able to login anymore!

Managing Microsoft Entra consent

When signing-up or logging into Imerso using a Microsoft account, you may get a permission request. Depending on your organization's Entra configuration, this permission might be accepted by you:
​

Or it might need an Entra Admin acceptance first. Write a message to your admin in the justification field and click on "Request approval". Once they have granted the permission you will be able to use SSO with Microsoft on Imerso.

Lastly, if you're an Entra Admin yourself, you will have the option to grant the permission for all users in the organization so they won't have to accept these permissions in the future.
​

πŸ’‘ Imerso's application ID in Microsoft Entra is c178e3a5-2ac4-444d-96ec-b2074392dcd3

Did this answer your question?