Single Sign-On

About Single Sign-On

Apptimized Single Sign-On (SSO) is an authentication technology that enables an Apptimized user to secure log in with single credentials to any of Apptimized solutions or services he has a subscription. 

Before starting the Apptimized SSO application, it is recommended to check the list of prerequisites and firewall rules. 

The Apptimized SSO application is available under the https://auth.apptimized.com/ 

User sign-on experience 

The following scheme shows a user login experience (both for the existing and new Apptimized user):

SSO_user-experience_v3.png

No need to reconfigure accounts for the existing Apptimized users. Therefore, existing credentials will continue to work.

In the case a password is not consistent with the organization's security policy settings or is expired, a password update is required.

Log in to Apptimized Passport

 The following screenshot shows the login screen to Apptimized Passport:

sso_01_2.PNG

The login to the Apptimized Passport is available under the following scenarios:

  • Email field > Password field > Login button;
  • Use Microsoft button;
  • Use LinkedIn button.

sso_02_new.png

Apptimized produces a secured cookie with an encrypted session ID to automatically login on the next visit. The automatic login option is available under the Remember my login checkbox.

Note. In instances of two-factor authentication is enabled for the account, the log in procedure will be as follows:
sso_19_new.png

Apptimized shows the following screen when successful: 

sso_attach-buttons.PNG

Ten attempts to provide credentials available by default. The number of attempts can be changed by an Organization administrator. The account locks when attempts deplete. The assistance on this issue is available under the Apptimized support team email (support@apptimized.com) or via https://www.apptimized.com/contact-us/ .

When a user is logged into the Apptimized SSO application, organization settings can be performed in the Organization Management application.

Restore a password

The option to recover a password is available under the Restore my password link:

sso_restore.png

Profile tab 

This tab enables a user: 

  • To make changes to the user’s profile data (i.e., first name, last name, occupation, department, avatar). 
  • To export personal data. 
  • To delete an account. 
Account avatar 

By default, the system assigns a user a random image. 

The option to change the avatar is available under the Update button: 

sso_08.png

Note. The file upload must be less than 5 Mb and PNG / JPEG only. 

Apptimized shows the following screen when successful: 

sso_03_avatar.png

The option to remove the avatar is available under the Remove button. Apptimized shows the following screen when successful: 

sso_10.png

Profile data 

To make changes to the profile data (i.e., first name, last name, occupation, department), a user enters the valid data into the relevant field. 

sso_11.png

The option to revert the changes before they were applied is available under the Reset button. 

The changes in the profile data apply when clicking the Save changes button.  

Apptimized shows the following screen when successful: 

sso_12.png

Export profile data 

Profile data can be downloaded as a JSON file by clicking the Export my personal data button. 

sso_09.png

Attach social media accounts

The option to connect user's social media accounts to Apptimized account is available under the Attach to Microsoft account button or Attach to LinkedIn account button:

sso_social-med.png

Apptimized shows the following screen when successful:

sso_21_3.PNG

Note. To proceed with the connection to social media, logging in social media account is required.

The next time a user signs in to the Apptimized, those credentials will apply.

The option to detach the account when needed is available under the Detach from Microsoft account button or Detach from LinkedIn account button. Apptimized shows the following screen when successful:

sso_21_1.PNG

Delete an account 

The option to delete an account is available under the Delete account button > Enter the valid password > Confirm account deletion button. 

sso_15.png

Apptimized shows the following screen when successful: 

sso_15_4.png

Email tab 

This tab enables a user to change the email address in the profile. 

To change the email address a user needs to perform the following actionsClick the Email tab > Select the New email address field > Enter new email > Select the Current password field > Enter the valid password > Send confirmation link to the new email button. 

sso_04.png

Apptimized shows the following screen when successful: 

sso_04_3.PNG

The following screenshot shows the notification email when a user makes an email change request: 

sso_email-change.png

When a user clicks a link from the confirmation email Apptimized shows the following screen: 

sso_04_4.PNG

Password tab 

This tab allows a user: 

  • To change the password. 
  • To enable two-factor authentication. 
Password change request 

The option to change password is available under the Password tab > Current password field > Enter the current password > Select the New password field > Enter new valid password > Select the New password (repeat) field > Repeat new valid password > Save changes button. 

sso_05.png

Apptimized shows the following screen when successful: 

sso_05_3.PNG

Two-factor authentication 

The two-factor authentication is disabled by default.  

sso_14.png

The option to enable two-factor authentication is available under the Enable two-factor authentication using the authentication app button. 

Apptimized shows the following screen when successful: 

sso_13.png

To proceed with the two-factor authentication set up, uploading one of the following applications is required: 

The example below shows the procedure to enable two-factor authentication via Microsoft Authenticator for Android (the installation of the application to the mobile phone or a tablet is required): Open Microsoft Authenticator > Add account button > Other account (Google, Facebook, etc.) option > Scan a QR code in Apptimized SSO > Select an account from the list > Enter a one-time password in Apptimized SSO > Enable two-factor authentication button in Apptimized SSO: 

sso_maut.png

Apptimized shows the following screen when successful: 

sso_16_2.png

The option to deactivate the two-factor authentication is available under the Disable two-factor authentication button: 

sso_18.png

Note. In case of two-factor authentication option is enabled in Apptimized Administration for the organization, a user is not provided with the ability to deactivate the two-factor authentication option in Apptimized SSO. 

Settings tab

This tab enables a user to configure settings within a specific user's account (i.e., to set up a time zone, date format, and time format by using a drop-down list):

sso_20.PNG

Account logout 

The option to terminate the session within the account is available under the Logout button > Logout from Apptimized button > Return to application button: 

sso_06_4.png

sso_06.png

Apptimized shows the following screen when successful: 

sso_01_2.PNG