Envoke

SSO is currently in beta release, available upon request. Please start a support chat and ask for SSO to be enabled for your account.

Envoke SSO currently works with Microsoft Entra ID, formerly known as Azure Active Directory.

SSO is not available on the Standard billing plan.

While SSO is in Beta the login link is: <a href="https://login.envoke.com/ssologin.html" rel="nofollow noopener noreferrer" target="_blank">https://login.envoke.com/ssologin.html</a>

An MS Entra (Microsoft Entra ID P1 or more) account is required.

<a href="https://www.microsoft.com/en-us/security/business/microsoft-entra-pricing" rel="nofollow noopener noreferrer" target="_blank">https://www.microsoft.com/en-us/security/business/microsoft-entra-pricing</a>

Enable SSO from the Security section on your <a href="https://e1.envoke.com/options.php" rel="nofollow noopener noreferrer" target="_blank">Account Settings</a> page and enter the Entra Tenant ID:

Next, link your own user with your MS account on your user profile page or use the link on the Security page. This will direct the user to authenticate on MS and asks for permission for using the Envoke account. 

You can make SSO required for other users of your account. 

On the next login, <a href="https://login.envoke.com/ssologin.html" rel="nofollow noopener noreferrer" target="_blank">on the SSO login page</a>, the user can pick to login via username and password or via SSO by clicking the Sign In with Microsoft button.

- On the next login, <a href="https://login.envoke.com/ssologin.html" rel="nofollow noopener noreferrer" target="_blank">on the SSO login page</a>, the user can pick to login via username and password or via SSO by clicking the Sign In with Microsoft button.

On the next login, <a href="https://login.envoke.com/ssologin.html" rel="nofollow noopener noreferrer" target="_blank">on the SSO login page</a>, the user can only login via SSO by clicking the Sign In with Microsoft button. Entering a username and password will result in an error.

- On the next login, <a href="https://login.envoke.com/ssologin.html" rel="nofollow noopener noreferrer" target="_blank">on the SSO login page</a>, the user can only login via SSO by clicking the Sign In with Microsoft button. Entering a username and password will result in an error.

When user clicks the Sign In with Microsoft button on the SSO login page they will be redirected to the MS authentication window. They login to MS and are automatically directed to their Envoke account.

- When user clicks the Sign In with Microsoft button on the SSO login page they will be redirected to the MS authentication window. They login to MS and are automatically directed to their Envoke account.

If already signed in to MS they will simply be redirected to their Envoke account

- If already signed in to MS they will simply be redirected to their Envoke account

User accounts can be unlinked on the users edit page or the user's profile page. Unlinked users can relink their own accounts and once again have access.

- User accounts can be unlinked on the users edit page or the user's profile page. Unlinked users can relink their own accounts and once again have access.

The MS admin can also revoke a user from using the Envoke Application in MS. This will immediately logout the session Revoking the Envoke Application access inside MS and making the feature required for all users is the only way to restrict access to this feature.

- The MS admin can also revoke a user from using the Envoke Application in MS. This will immediately logout the session Revoking the Envoke Application access inside MS and making the feature required for all users is the only way to restrict access to this feature.

Only one MS account can be enabled per user

Only one user per MS user, there is an error if another user tries to link the same account.

- Only one MS account can be enabled per user
- Only one user per MS user, there is an error if another user tries to link the same account.

Login link

Microsoft account requirement

Steps to enable SSO

Signing in with SSO