Sprinklr Achieves ‘Impossible’ SSO for Microsoft Products Without Active Directory Using G Suite With Auth0
Sprinklr had to figure out federated identity management across more than 30 SaaS platforms — the solution turned out to be Auth0
Sprinklr is a provider of enterprise software for customer experience management. Sprinklr helps the world’s most valuable brands understand the conversations that matter most on channels such as social media, messaging, blogs and review sites. Then, Sprinklr helps brands use these insights to improve marketing, advertising, customer service, product development and more.
Companies like Nike, McDonald’s, Microsoft, P&G, and Samsung rely on Sprinklr’s customer experience management platform for a unified way to reach, engage, and listen to their customers on more than two dozen social channels, including Facebook, Twitter, and recently-added Viber.
But creating that seamless and secure customer experience management platform for global teams meant that Sprinklr had to rely on a mix of numerous SaaS offerings combined with mission-critical Microsoft products.
“We don’t have any of the traditional IT infrastructure that a company from 20 years ago would have had,” says Matt Tedder, Global IT Director, Sprinklr.
Born in the cloud as a social-first software company, Sprinklr doesn’t rely on IT systems hosted internally. Sprinklr’s internal IT consists entirely of SaaS platforms, without Active Directory or a traditional internal domain. Because of this, there was no easy way for the company to federate logins to Microsoft services. Tedder wanted an easy way for Sprinklr employees to access it all.
“We had to figure out how to standardize and simplify and federate everyone’s identity across more than 30 different SaaS-based platforms, and federate Microsoft logins,” he says.
Tedder enabled Single Sign On (SSO) using G Suite as their Identity Provider (IdP), but for key Microsoft products, they had to use individual logins on custom Microsoft subdomains. “Because we don’t use Active Directory or have an internal domain, it was one of the only things that we couldn’t just click ‘login with Google’ for,” Tedder says. “And every time you add one more manual step, you lose somebody. They lose patience. They forget the password. It causes support tickets.”
Finding the Impossible Solution
Tedder continued researching options — and hearing that it just wasn’t possible.
“I researched this a long time and didn’t think there was a solution. I was on a fool’s mission to see if I could do it myself. I got 50% of the way there, and then Nico [Sabena] from Auth0 gave me free, crazy good support when I wasn’t even a customer, and we figured it out together,” he says.
Using their G Suite credentials to login to any locally-installed Office application, Auth0 checks if an account exists and if it doesn’t, creates an account in Office 365, confirms that everything is okay, then assigns the proper license. “Auto-assigning of licenses is not an option in Office 365,” says Tedder. “So you can do it programmatically [with Auth0], and all of this is seamless to the user.”
Tedder estimates that his team is saving an average of 10 minutes per new user since completely automating the onboarding process. Maybe not critical, he says, until you think of the impact at-scale. “As a company grows, if you’re 10 people this doesn’t matter, right? Ten people can remember a password, but when you’re 50, when you’re 100, when you’re 1,000, when you’re 10,000, forget about it. You have to get these manual steps out of your business, right?” he says. “There is literally — or very close to — zero support-burden now.”
Another benefit of easy onboarding is equally easy off-boarding. “I can click one button,” he says, “and they lose access to our entire world.
Going from a manual-touch to zero-touch implementation has lead to significant savings for Sprinklr. “Auth0 has saved us countless hours of manual work by federating logins and automating processes between systems that I never thought would integrate,” Tedder says.
The Auth0 solution also provides Sprinklr’s developers with easy-access to additional Microsoft products like Power BI or Azure, which use the same Office 365 online authentication. “We want to become more closely integrated with Microsoft, and this helps us easily blend our work and interaction with Microsoft,” Tedder says.
Auth0 provides a platform to authenticate, authorize, and secure access for applications, devices, and users. Security and development teams rely on Auth0's simplicity, extensibility, and expertise to make identity work for everyone. Safeguarding more than 4.5 billion login transactions each month, Auth0 secures identities so innovators can innovate, and empowers global enterprises to deliver trusted, superior digital experiences to their customers around the world.