Skip to content

Settings and activity

1 result found

  1. 379 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    Hi community, we appreciate many businesses have adopted single sign on with providers like Google, Microsoft Azure/Entra, and Okta to easily streamline logins to many applications and manage operational risk. Our team are staying close to votes and feedback of the idea here, and though we can't commit to development at this time, we will be sure to let you know of any progress toward enabling single sign on

    An error occurred while saving the comment
    Keith Fountain commented  · 

    Interestingly, if you switch to ideas that are in progress, there are many that have far fewer votes than this post that are being worked on - how many votes do we need to get before you add this to your road map, or at least tell us why you are so reticent about implementation.

    An error occurred while saving the comment
    Keith Fountain commented  · 

    Perhaps we should start hitting forums with this and start impacting uptake of new business, it's always the financial impact that gets things done.

    An error occurred while saving the comment
    Keith Fountain commented  · 

    Apologies for my passive aggressive comments in the past, they are borne from the frustration of not getting any real commitment, response or timeline for this request.

    The reason we want SSO is so that when we disable a users account, they are locked out of everywhere from that moment. If we have multiple applications with multiple user accounts and we have to send requests to different department administrators to get these accounts disabled, it invariably means delay. In the current climate, the damage that can be done by an employee on a GDPR level can be immense if one account is overlooked, or the person that manages that application is off on that day. When all logins are controlled by a single account disabled=blocked, which you would think a company of Xero's size and reach would understand.

    Please give us some kind of indication about the current roadmap and a projected date for implementation so we can remove Xero from our risk register.

    An error occurred while saving the comment
    Keith Fountain commented  · 

    This should be your number one priority and shouldn't take long to implement, especially with a development team of the size we presume you have as a multinational company. It's just an Azure Enterprise application that you should be able to put together in a couple of months at the outside, not years. I will be suggesting to our finance department that they look at different software.

    An error occurred while saving the comment
    Keith Fountain commented  · 

    We are moving all of our apps to Microsoft SSO as one of our improvement targets for our ISO accreditation. It doesn't make sense to have multiple authenticators for different apps. We will then be able to monitor any unusual sign-in activity through a single security portal. Our FD has put a lot of work into migrating over to Xero, don't want to have to tell him to find something else because it doesn't meet with policy.