Skip to content
← For small businesses

Enter your idea

For small businesses: Settings & user roles

Categories

(thinking…)

Login - Enable Windows Azure Active Directory Single Sign On

Ability to use Azure Active Directory for MFA.

Purpose: It makes Microsoft users easily log into Xero.

511 votes

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close

We’ll send you updates on this idea

AdminXero Team (Admin, Xero) shared this idea  ·   ·  Report…  ·  Admin →
How important is this to you?

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close
submitted  ·  AdminKelly Munro (Community Manager, Xero) responded  · 

Hi community, we appreciate many businesses have adopted single sign on with providers like Google, Microsoft Azure/Entra, and Okta to easily streamline logins to many applications and manage operational risk. Our team are staying close to votes and feedback of the idea here, and though we can't commit to development at this time, we will be sure to let you know of any progress toward enabling single sign on

Show previous admin responses (2)

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close
Submitting...
An error occurred while saving the comment
  • Kristian Zembic commented  ·   ·  Report

    It is a joke that this still has not been implemented with no response from Xero for over a year now. SSO is literally an industry standard now. If their dev team is this incompentent, then I would quickly begin questioning how robust is Xero's security given the highly sensitive data their systems hold. I feel that unless this starts to affect their revenue stream, they will continue to ignore these requests. Our company will start to look into alternative providers on our next renewal. Do yourself a favour, if you are a potential customer for Xero and are reading this, look elsewhere.

  • Jimmy Tang commented  ·   ·  Report

    PLEASE ALLOW THIS !!!! we have staff members logging into our system from home and cannot prevent it.

  • Andrew Anderson commented  ·   ·  Report

    Also take a look at what Stripe did in their SSO implementation to handle advisors with multiple clients/organizations, role assignments via attribute mappings, and their EXCELLENT testing and troubleshooting tools that ensure the SSO configuration is working.

  • John Crane commented  ·   ·  Report

    Please add Okta to the list of IdPs that should be supported when SAML SSO is added to Xero.

  • Jodie Rugless commented  ·   ·  Report

    If Xero were committed to keeping their customers most critical data safe and secure, and making administration of user access as streamlined as possible, they would implement Azure SAML. Get on with it.

  • Amy Jobson commented  ·   ·  Report

    It suprises me that there hasnt been any word from Xero on this. Doesnt seem like they are "staying close to votes and feedback of the idea here". Xero, please confirm this thread is being monitored at all and what the plan is here!

  • Nathan Porter commented  ·   ·  Report

    Unfortunately, Xero is one of the weak links in our application stack when it comes to security.

  • Dan Simpson commented  ·   ·  Report

    Shocking that Xero do not support Azure SAML. This is not helping businesses at keep their most critical data safe and secure, making administration of user access that much more difficult!

  • Andrew Anderson commented  ·   ·  Report

    Please add Okta to the list of IdPs that should be supported when SAML SSO is added to Xero.

  • Matt Gifford commented  ·   ·  Report

    I think we need a commitment that it's in development at least, it's been 12+ years since this was initially suggested.

    It's somewhat embarrassing for Xero at this point..

  • Guy Edelstyn commented  ·   ·  Report

    Seriously, how is it 2025 and no SSO?! @Xero team please update!

  • Stuart Ellidge commented  ·   ·  Report

    It's more than a year since the last post - can you give us an update?

  • Eric Hoy commented  ·   ·  Report

    Looking at these docs... I'm surprised the ATO isn't enforcing you to get this type of Identity integration completed. It's mentioned in Essential8, CPS234, and other ASIC/APRA regulatory guidelines.

    https://apiportal.ato.gov.au/api-products/oauth-dynamic-client-registration-api
    https://www.ato.gov.au/api/public/content/d9bc7a79-1954-405f-b107-9154900768eb_ato_digital_strategy_2022_25_pdf

  • Tasha Palmer commented  ·   ·  Report

    This definitely needs to be made a priority. Our financials and payroll are the least secure.

  • Matthew Flanagan commented  ·   ·  Report

    Stop putting prices up each year without implementing SSO. We need this to be secure. We don't need or want features like JAX.

  • Rupert Davey commented  ·   ·  Report

    100% yes to this. Why is this not a thing... it's 2025!!!!

  • Michael Romano commented  ·   ·  Report

    As a shareholder, I'm watching this closely. Not sure what the CISO is doing.

  • James Bonifield commented  ·   ·  Report

    I am looking at moving off Xero, as it is ridiculous that SSO support is not provided, and as a provider of Identity & Access Management services it's sort of a deal breaker to use software that doesn't provide this fundamental security benefit.

    By the way - as an enterprise software provider - you should be mindful of CISA's Secure By Design Framework and the myriad other frameworks that you are not in compliance with by not providing SSO (even behind a paywall, which is a separate conversation, but at least it's offered)

    If you need help implementing shoot me an email - james@anthropicidentity.com I work in IAM and have implemented SSO many times. How easy it is to do this vs the impact it has on the maturity of your software makes me a little shocked you still don't have it in place

  • Joseph Kelly commented  ·   ·  Report

    Will begin to look at alternative systems which allows SSO. Please review your commitment to this

← Previous 1 3 4 5 8 9