Single Sign-On and Multi-Factor Authentication are optionally available with FMI Works when connected to an SSO provider
This article applies to our FMI Works product, when delivered as a cloud solution
What is Single Sign-On (SSO)?
Definition
SSO is an authentication system that permits a user to use one set of login credentials -- for example, a name and password -- to access multiple applications.
More and more organisations are adopting SSO as policy. If you'd like more information on the benefits of SSO, see our blog article.
SSO Providers
Many organisations already have an SSO provider such as Azure Active Directory (AAD) or Okta, which maintain a user directory and link to multiple applications.
Multi-Factor Authentication (MFA)
MFA requires users to provide at least two pieces of evidence to prove their identity. Each piece of evidence must come from a different category: something a user knows, something they have or something they are. An example is a password + unique code sent via text.
MFA is enabled by the SSO provider and is activated to align with an organisation's policy.
Single Sign-On and FMI Works
How it works
FMI Works enables SSO by linking to an organisation's SSO provider through an integration with our authentication service, login.fmiworks.com.
Login.fmiworks.com is a separate authentication service that has been built using the IdentityServer4 framework. IdentityServer4 is based on the 15 security standards of OpenID Connect, which are the current best practice for security.
Enabling SSO in FMI Works
For FMI Works customers with the SSO add-on, SSO will be provisioned by the FMI Works team. Our team will work with your IT to set up Azure Active Directory (AAD) or Okta, and specify any approved domains.