Enter your idea

A note to everyone on this thread, the status of this idea is still "In Development". If Xero has abandoned this idea, as has been mentioned, then I would expect the status to change to "Not in pipeline".

Huge upvote. This would be super valuable for security and other reasons.

Can you get this done, crazy its taking you so long?

as i say guys i think literally only way for this to work is tell companies like free agent quickbooks name and shame xero at accountex in there q&A maybe they will realise when there competitors know they lack basic features like this the devs might actually go ahead and make a move... xero will fall if they continue with this behaviour

This is incredibly frustrating.

This idea is one of the top rated requests on this site, with consistent demand from users for updates and growing frustration at why it has so far taken 13 years to get this prioritised.

We need at least an immediate update on this idea - ideally some confirmation of when this will be delivered.

I'd strongly suggest you put a rocket up your developers to get this basic, important feature live as soon as possible.

total smack in the face just spoke with a higher up from xero james he has advised sso is paused dev team doesnt think its important and they are no longer going to go ahead with the idea "Agent profile pic
James
Support specialist
16 Feb 2:35 PM
Hi

Thanks for your time on the phone this afternoon.

As discussed our Product Team understand the importance of single sign on and this feature to you. While they can't currently commit to development, we’re gauging a sense of interest in this through the community on Xero Product Ideas.

I've shared a link to the product idea where you can view and support the idea surrounding this topic. Xero Product Ideas is where our customers can share and support ideas for change. Any change or progress of this feature will be shared with everyone through the idea.

Xero Product Ideas: MFA - Enable Windows Azure Active Directory Single Sign On

Kind regards

James" i have a phone call conversation discussing his text nothing will apparently change the dev team decision as its final guys i think we should make a pettion or go to the ceo and address these concerns... maybe name and shame the lack of this feature we may only then get it...

Please add a seamless provision/hooking with Okta too

Love that the need for SSO is being recognized. There are a huge number of SMB customers that use the Microsoft 365 Business Premium licence (any business with up to 300 users) as their core IT service offering. SSO support is included. Looking forward to this being implemented.

If you're stuck integrating - it's our bread and butter! Just give us a call. We have an interest in this being enabled too (we like our apps secure and SSO).

https://www.shapingcloud.com/idam

When can we expect an official update on this? Our security teams want Xero gone from the business because of this.

Vendor-agnostic SSO is the correct way to go here.

Thanks for raising awareness to not only limit this functionality to Entra ID.
Enabling generic SAML / OIDC would allow the usage of other tools _as well_ as Entra ID.

100% agree with a vendor-agnostic SSO solution based on industry standards. Implementing _standard_ SAML or OIDC would greatly benefit everybody.

Absolutely should be focussing on standards based solutions and not restricting to Entra. We have a small number of apps where we have to use Entra instead of our preferred platform and they are a real pain.

To better serve all customers, I believe Xero should support SAML 2.0 and/or OpenID Connect (OIDC) for authentication, along with SCIM for automated user provisioning and deprovisioning. This would allow seamless integration with multiple providers, avoiding vendor lock-in and meeting enterprise security requirements.

I’ve recently followed up with Xero Support regarding this SSO feature, and it appears the current development focus is on Microsoft Entra ID. While that’s great for organizations using Microsoft’s identity platform, many of us have been waiting for a vendor-neutral, standards-based SSO solution that works with a wide range of identity providers.

To better serve all customers, I believe Xero should support SAML 2.0 and/or OpenID Connect (OIDC) for authentication, along with SCIM for automated user provisioning and deprovisioning. This would allow seamless integration with Okta, Ping Identity, Auth0, Google Workspace, and other providers — avoiding vendor lock-in and meeting enterprise security requirements.

If you agree, please vote for my related idea here:

🔗 Enable Generic SSO Support via SAML 2.0 / OIDC with SCIM Provisioning: https://productideas.xero.com/forums/967121-users-setup/suggestions/50993242-enable-generic-sso-support

Enable Generic SSO Support via SAML 2.0 / OIDC with SCIM Provisioning

certainly SSO (and SCIM) is needed and required. Please do not limit this to Entra ID, but keep it generic using SAML 2.0 or OIDC. This is not an optional nice-to-have, but an essential functionality in the 21st century!

I can't believe Xero hasn't implemented this fundamental security feature. So much corporate dumbness here.