Subscribe to more awesome content!

Sprinklr Achieves ‘Impossible’ SSO for Microsoft Products without Active Directory using G Suite with Auth0

Sprinklr had to figure out federated identity management across more than 30 SaaS platforms — the solution turned out to be Auth0.

Try Auth0 For Free

Companies like Nike, McDonald’s, Microsoft, P&G, and Samsung rely on Sprinklr’s customer experience management platform for a unified way to reach, engage, and listen to their customers on more than two dozen social channels, including Facebook, Twitter, and recently-added Viber.

But creating that seamless and secure customer experience management platform for global teams meant that Sprinklr had to rely on a mix of numerous SaaS offerings combined with mission-critical Microsoft products.

“We don’t have any of the traditional IT infrastructure that a company from 20 years ago would have had,” says Matt Tedder, Global IT Director, Sprinklr.

Born in the cloud as a social-first software company, Sprinklr doesn’t rely on IT systems hosted internally. Sprinklr’s internal IT consists entirely of SaaS platforms, without Active Directory or a traditional internal domain. Because of this, there was no easy way for the company to federate logins to Microsoft services. Tedder wanted an easy way for Sprinklr employees to access it all.

“We had to figure out how to standardize and simplify and federate everyone’s identity across more than 30 different SaaS-based platforms, and federate Microsoft logins,” he says.

Tedder enabled Single Sign On (SSO) using G Suite as their Identity Provider (IdP), but for key Microsoft products, they had to use individual logins on custom Microsoft subdomains. “Because we don’t use Active Directory or have an internal domain, it was one of the only things that we couldn’t just click ‘login with Google’ for,” Tedder says. “And every time you add one more manual step, you lose somebody. They lose patience. They forget the password. It causes support tickets.”

Finding the Impossible Solution

Tedder continued researching options — and hearing that it just wasn’t possible.

“I researched this a long time and didn’t think there was a solution. I was on a fool’s mission to see if I could do it myself. I got 50% of the way there, and then Nico [Sabena] from Auth0 gave me free, crazy good support when I wasn’t even a customer, and we figured it out together,” he says.

In addition to removing the support burden, Tedder and Sabena were able to set automatic user-provisioning and license-assignment through a custom javascript rule hosted on Auth0.

Using their G Suite credentials to login to any locally-installed Office application, Auth0 checks if an account exists and if it doesn’t, creates an account in Office 365, confirms that everything is okay, then assigns the proper license. “Auto-assigning of licenses is not an option in Office 365,” says Tedder. “So you can do it programmatically [with Auth0], and all of this is seamless to the user.”

Tedder estimates that his team is saving an average of 10 minutes per new user since completely automating the onboarding process. Maybe not critical, he says, until you think of the impact at-scale. “As a company grows, if you’re 10 people this doesn’t matter, right? Ten people can remember a password, but when you’re 50, when you’re 100, when you’re 1,000, when you’re 10,000, forget about it. You have to get these manual steps out of your business, right?” he says. “There is literally — or very close to — zero support-burden now.”

Another benefit of easy onboarding is equally easy off-boarding. “I can click one button,” he says, “and they lose access to our entire world.”

Going from a manual-touch to zero-touch implementation has lead to significant savings for Sprinklr.  “Auth0 has saved us countless hours of manual work by federating logins and automating processes between systems that I never thought would integrate,” Tedder says.

The Auth0 solution also provides Sprinklr’s developers with easy-access to additional Microsoft products like Power BI or Azure, which use the same Office 365 online authentication. “We want to become more closely integrated with Microsoft, and this helps us easily blend our work and interaction with Microsoft,” Tedder says.

About Auth0

Auth0, a global leader in Identity-as-a-Service (IDaaS), provides thousands of enterprise customers with a Universal Identity Platform for their web, mobile, IoT, and internal applications. Its extensible platform seamlessly authenticates and secures more than 1.5B logins per month, making it loved by developers and trusted by global enterprises. The company’s U.S. headquarters in Bellevue, WA, and additional offices in Buenos Aires, London, Tokyo, and Sydney, support its customers that are located in 70+ countries.