Settings and activity
1 result found
-
616 votes
Hi everyone, we appreciate all the feedback and votes on this idea. We know using Microsoft Entra ID SSO is now common practice for some businesses and being able to access Xero via a native integration with Entra ID would streamline how your teams log in and get set up in Xero, as well as help in managing access for larger teams and keeping things secure.
Our product team have been working with a small limited group of Partners to develop SSO capabilities. Though we can't give any definite timelines yet, we’ll keep this thread updated with news. Thanks
An error occurred while saving the comment 
MyTaxDoc Accountants
supported this idea
·
Hi Kelly,
I am writing to formally raise and consolidate my concerns regarding Xero’s current position on Microsoft Entra ID (formerly Azure AD) Single Sign-On, and to seek clarity on both delivery timelines and next steps.
The request for native Entra ID SSO has now attracted 614 votes. Based on industry norms, the average Xero firm has around 10 employees, meaning this issue is conservatively affecting over 6,000 individual users. These are real people accessing highly sensitive financial data without the benefit of centralised identity management, conditional access policies, or proper lifecycle control.
From a security, governance, and risk-management perspective, that scale is material.
Without native Entra ID SSO, firms are forced to rely on fragmented login controls and manual processes, increasing exposure to:
Orphaned access when staff leave
Inability to enforce conditional access or MFA policies consistently
Greater susceptibility to credential compromise
This is a preventable risk, and one that is increasingly difficult to justify in a platform positioned as market-leading and enterprise-ready. Frankly, it is embarrassing that a company of Xero’s standing still lacks a baseline identity feature that is now standard practice across professional services and regulated industries.
It is also important to note that this thread has been ongoing for over four years. An update was shared last year indicating that your product team was working with a small group of partners, however there has been no substantive follow-up since. There is still no clarity on scope, progress, or even an indicative timeframe. From the outside, this gives the impression that the issue has stalled, despite continued demand and engagement.
The retention impact is already being felt. I am personally aware of firms that have moved away from Xero specifically due to the absence of proper SSO and identity controls. This is not hypothetical dissatisfaction; it is translating into real churn. If this remains unresolved, I would realistically expect to be among those reconsidering platform alignment. That would be a commercial decision driven by security requirements, not sentiment.
Within the next six months, our firm is on track to reach Platinum Partner status. As a rapidly scaling firm deeply invested in the Xero ecosystem, it is disappointing that the very firms Xero wishes to retain long term are currently the most constrained by this limitation.
To move this forward constructively, I would genuinely welcome direct engagement. I would be happy to either host you and your team at our offices, or to come down to yours with our Head of IT, so we can walk through the real-world security, onboarding, and access-control challenges this creates and help drive this towards a practical resolution. A short, focused discussion between product, security, and real users could achieve far more than years of forum updates.
I would appreciate clarity on the following:
Confirmation that Entra ID SSO will be delivered as a native integration, not a workaround
Whether there is any indicative delivery window (even at a high level, such as quarters)
Whether firms outside the current limited partner group can participate in testing or discovery
Xero sits at the centre of firms’ financial ecosystems. Identity and access management should reflect that level of responsibility and maturity. We want to continue building with Xero long term, but that commitment must align with modern security standards.
I look forward to your response.