Does easyAML support SSO?

Yes - on Enterprise tier. Single Sign-On (SSO) lets the customer's existing identity provider (typically Microsoft 365 / Azure AD, Google Workspace, or Okta) handle authentication for easyAML, so staff use their existing corporate login rather than a separate easyAML password.

To set up:

1. Route the request via email to the customer success team - SSO configuration is a one-time setup, not self-service.
2. Customer provides - IdP Client ID, Client Secret (shared via secure channel, not email), and Tenant ID (or equivalent for non-M365 providers).
3. easyAML provides - the Redirect URI for the customer to add to their IdP tenancy.
4. Test the SSO flow - typically 30 minutes from configuration to first successful SSO login.

M365 / Azure SSO is the most common setup and is well-trodden. Google Workspace and Okta are supported on the same SAML / OIDC basis. SSO doesn't replace MFA - it just changes which system handles the authentication flow; MFA continues to operate at the IdP level (or at easyAML's level for accounts that bypass SSO).

For Professional and Starter customers without SSO, the standard email-and-password flow works fine for most teams; SSO becomes important at enterprise scale where centralised identity management is required.

Related articles

• What MFA options does easyAML support?
• What ID verification methods does easyAML support?
• Is the easyAML support team based in Australia?
• Does AUSTRAC require MFA on the AUSTRAC Online/reporting account?
• My freemium / login link has expired - how do I get back in?