Active Directory SSO

Tommy Freed 1 Reputation point
2020-12-21T07:43:16.513+00:00

How does the active directory SSO work in LMS?

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,459 questions
0 comments

3 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. soumi-MSFT 11,716 Reputation points Microsoft Employee
    2020-12-21T08:00:27.29+00:00

    Hello @Tommy Freed , thank you for reaching out. Like any other application, LMS (Learning Management Systems) can also be developed to support either SAML or OIDC/OAuth. Now the SSO experience depends solely on the type of auth protocol been used in the application as based on that the integration would be done with AAD, and accordingly AAD would be issuing the auth-tokens to the application for it to use and authenticate the user.

    You can check the following documents that speak on integrating a SAML-based LMS Azure Gallery application called TalentLMS: https://learn.microsoft.com/en-us/azure/active-directory/saas-apps/talentlms-tutorial#configure-talentlms-single-sign-on

    If you are developing your own LMS solution which is yet not added to Azure Gallery Apps, then you might consider checking the following docs:

    Hope this helps.

    Do let us know if this helps and if there are any more queries around this, please do let us know so that we can help you further. Also, please do not forget to accept the response as an Answer; if the above response helped in answering your query.

    0 comments
  2. Pradnya 1 Reputation point
    2020-12-22T11:09:33.933+00:00

    An active directory SSO helps to manage and sync all the data without allowing you to leave the platform. With SSO, learners seamlessly switch between different systems, portals, and applications. This makes their learning experience smoother and more coherent without the need to endlessly enter login details which can break that all-important flow of learning. Most of the LMS providers integrate LMS with active directory SSO which simplifies app deployment with a centralized user portal. You can use an active directory SSO it is a convenient and safe way for learners to access your Learning Management System.

    If you are still curious and want to know more about active directory SSO Click here.
    Or you can contact the LMS service provider.

    I hope this answer helps you.

    Thanks!

    0 comments
  3. Lynton Howes 1 Reputation point
    2021-08-11T12:50:24.53+00:00

    Hi @Tommy Freed

    Firstly, you'll only want to use SSO with your LMS if all users have a corporate (e.g. Azure) AD account.

    If that is the case, then you can enforce mandatory SSO and enjoy the benefits of not having a separate password for users and a seamless login experience.

    In addition, for a modern LMS such as Simplify LMS integrated with SAML SSO, you will enjoy Just in Time user provisioning, meaning that you don't need to create a user.

    i.e.

    1) new user is created in Azure AD / Windows account created.
    2) user clicks new custom app in Azure or goes to custom URL for LMS
    3) user is created automatically (and provisioned with default courses if the LMS supports that)
    4) when the user is terminated, you don't need to immediately deactivate the user, as shutting down their Windows account will result in them not being able to access the LMS

    It is great when functioning as above. Good luck and feel free to reach out if you need help.

    Thanks

    Lynton

    0 comments