Settings and activity
1 result found
-
570 votes
Hi everyone, we appreciate all the feedback and votes on this idea. We know using Microsoft Entra ID SSO is now common practice for some businesses and being able to access Xero via a native integration with Entra ID would streamline how your teams log in and get set up in Xero, as well as help in managing access for larger teams and keeping things secure.
Our product team have been working with a small limited group of Partners to develop SSO capabilities. Though we can't give any definite timelines yet, we’ll keep this thread updated with news. Thanks
An error occurred while saving the comment An error occurred while saving the comment 
Lauren Child
commented
Just to be clear, it's not just about the ease of login. At the moment Xero doesn't provide a method of enforcing MFA or adding security monitoring & control on the login.
That makes it a liability, for example a user without MFA is potentially a regulatory breach and potential lawsuit, aside from the obvious security and privacy impact. Being divorced from the enterprise means it's not being monitored the same way.
In short if a user falls victim to phishing and a hacker gets caught and blocked automatically in the enterprise, they still potentially get full access to Xero accounts until somebody pops over and resets the account manually, and who knows what personal & financial data access and damage they could do in the interim
That's why we need SAML or Azure SSO etc.
Ease of use is a bonus, but really it's all about de-risking the use of Xero in a normal enterprise.
An error occurred while saving the comment Lauren Child
commented
This idea is on here three times - search for SSO.
Lauren Child
supported this idea
·
Can we get onto the trial please?