If your organization is using Microsoft Azure Active Directory (AD), you can allow your users to login to Optimaze Worksense using their personal Microsoft work accounts.
How does it work?
Optimaze Worksense uses a virtual Common tenant that directs users to sign in with their own organization's Azure AD tenant (Customer’s tenant).
When a user signs in, Optimaze Worksense reads the user’s name, email and the user account name. These are read as Claims values. User’s name and email are saved into Optimaze Worksense. These are always read when the user signs in and will be updated to Worksense if they change.
When user signs in for the first time they have to accept the terms of service and privacy statement. After the first sign in, the user is automatically registered to the Optimaze Worksense with employee level permissions.
If user that has used Optimaze Worksense leaves the organization (Customer’s tenant) the user is not automatically deleted from Optimaze Worksense. The user however won’t be able to sign in to the system.
Once Sign in with Microsoft is enabled everyone in the organisation’s Azure AD directory can use sign in except Guest Users and External Users. Who can sign in cannot be limited in Optimaze Worksense.
Technical implementation is done with Azure AD v2, https://docs.microsoft.com/en-us/azure/active-directory/develop/v2-overview
Setup
If you haven’t installed Optimaze Worksense as an ‘Azure Enterprise Application’ please see Microsoft O365 integration .
You must have Administrator role in Optimaze Worksense in order to enable Microsoft Sign-in.