Skip to main content
Français (Belgique) Nederlands (België) Nederlands (Nederland)

SSO - Microsoft or Azure AD/Microsoft Entra ID account

Updated

AdminPulse supports signing in via Single Sign-On (SSO) using both personal Microsoft accounts (such as @hotmail.com or @outlook.com) and professional accounts that are part of an Azure AD / Microsoft Entra ID environment.

Important before switching to SSO

If SSO is activated, it will automatically apply to all users in your AdminPulse environment. It is not possible to use SSO for some people and the classic login (email + password) for others.

What needs to be prepared?

No technical setup is required on your side, but the following conditions and steps must be completed to ensure a smooth switch to SSO:

  • Each user needs a valid account in your organization’s Azure AD.
  • Contact the AdminPulse support team via support@adminpulse.be to schedule a time for the activation.
  • Inform everyone at your organization in advance that after the switch, logging in will only be possible via Microsoft SSO.

The classic login method with email and password will no longer be available after the switch. We often see that users are unaware of this change, which can cause login errors or confusion. It is the organization's responsibility to inform all users proactively. Make sure internal communication is clear and sent out on time.

What if the user cannot grant access to the AdminPulse app?

The first time a user signs in with SSO, a Microsoft prompt will appear asking them to give AdminPulse permission to use their Microsoft account.

Depending on the settings in your Azure AD environment, it may be possible that users don’t have the rights to approve the access themselves. You can check this in the Azure AD user consent settings:

Default user consent setting in Azure AD

If the setting is “Do not allow user consent”, the user will see the following error message:

Error message when consent is blocked

To solve this:

  1. Click the first link shown in the message.
  2. Sign in with an account that has administrator rights in Azure AD.
    This does not have to be the same account used in AdminPulse.
  3. The administrator can then approve permissions for the whole organization, so users don’t need to do it individually.

Global approval given by administrator

What about two-factor authentication (2FA)?

If 2FA is enabled on your Microsoft or Azure AD account, the Microsoft sign-in screen will automatically ask for your 2FA code after login.

👉 Please note: Any 2FA settings you previously used in AdminPulse will no longer apply. AdminPulse will now follow the security settings from your Microsoft account.

If 2FA is not enabled on your Microsoft account, your login via SSO will also not be protected by two-factor authentication.

More information

Related to

Related articles