Enable Single Sign-On (SSO) with Azure AD

Created by Ashleigh Whitworth, Modified on Fri, 4 Jul at 2:28 PM by Ashleigh Whitworth

Learn how to set up Single Sign-On (SSO) for your Locata system using Microsoft Azure Active Directory (Azure AD) to streamline login and improve security. 


TABLE OF CONTENTS


What is Single Sign-On (SSO)?

Single Sign-On allows users to access multiple systems—including Locata—using just one login. If users are already logged into their council or organisation’s network, they can access Locata directly without re-entering credentials.


Did you know: SSO reduces password fatigue and helps IT teams cut down on support requests for forgotten passwords.


Benefits of using SSO for your users

  • Faster access: Users can go straight into Locata without the friction of logging in each time.
  • Improved security: Credentials are not re-entered or stored in the browser, reducing the risk of password-related security issues.
  • Fewer support tickets: Reduces forgotten password incidents and the administrative time spent on password resets.
  • Simplified user management: IT departments can manage access via existing Azure AD user roles and permissions.


How SSO Works with Locata

Locata integrates with Microsoft Azure Active Directory to authenticate users based on their current login status on council-managed devices.

  1. A user logs into a council-managed device as usual.
  2. When they visit the Locata site, their login status is checked automatically.
  3. If authenticated, they’re logged into Locata without needing to enter details again.


Note: Users not on a managed device may be prompted to log in manually or denied access, depending on your security setup.


How to Set Up SSO

To enable SSO, Locata collaborates with your IT team or Azure admin to configure a secure connection. Your IT team needs to:

  1. Register Locata as a trusted enterprise app in your Azure AD.
  2. Set up secure metadata exchange using SAML or OAuth/OpenID Connect.
  3. Test with a pilot group before rolling out more widely.


Note: No need to install software or update user machines—SSO works entirely through the cloud.


We will provide full technical instructions and support throughout the process, and it usually takes just a few days to complete with the right contacts in place.


Note: Manual login options can be enabled for off-site access if required.


FAQs

Can users still log in manually from home or a personal device?
Yes, depending on your chosen security settings, manual login can be allowed.


What happens if someone leaves the organisation?
Access to Locata is automatically revoked when their Azure AD account is removed—no extra steps needed.


Is there a cost to enable SSO?
Please contact your Account Manager to discuss subscription details and any related fees.


Summary

Enabling Single Sign-On with Azure AD enhances security, improves the user experience, and simplifies account management across your organisation. It allows your staff to access Locata effortlessly while maintaining robust identity controls.