Skip to main content

How to Use SSO?

In this article, we will explain how to use Single Sign-On (SSO) to log in to TimeChimp.

Written by Marene Schram

What is SSO?

SSO stands for "Single Sign-On." It's a convenient technology that allows you to log in once to gain access to various websites, applications, or services. Instead of entering your username and password repeatedly, SSO securely remembers your login credentials and shares them between the different platforms. This means fewer passwords to remember and faster, easier access to the things you want to use.

How to log in using SSO

If you want your employees to login with SSO when logging in to TimeChimp, you first have to enable this. Please contact support@timechimp.com for more information on how to enable this for your organisation.

After SSO has been enabled, users login with SSO with the following steps:

  1. Go to the TimeChimp login page.

  2. Enter your work email address and click 'Login'.

  3. After being verified by Microsoft 365 Azure AD, you will be redirected back to TimeChimp, and you will be successfully logged in.

More information about SSO

SSO via Microsoft 365 login. Please note that Microsoft 365 Azure AD is used as the Identity Provider (IdP).

Note: When running TimeChimp under your own domain name, the option to log in via SSO is no longer available.

Setting up Single Sign-On

Below is a step-by-step guide to setting up SSO for your organization.

Create a Microsoft Entra ID application

First, create a new Microsoft Entra ID application in your Azure portal by following these steps:

  1. Go to your Azure portal

  2. Select Microsoft Entra ID, choose App registrations in the left menu, and go to New registration.

  3. Give your new application a name so you can identify it later (e.g. TimeChimp SSO).

  4. For Supported account types, we recommend the first option: Accounts in this organizational directory only.

  5. For Redirect URI, select Web and enter: https://auth.timechimp.com/oauth2/idpresponse

Create a client secret

  1. Select Add a certificate or secret.

  2. Click New client secret.

  3. Add a description so you can identify which secret is used for TimeChimp.

  4. Set the expiration date to your preference (we recommend 24 months).

  5. Copy the Value and store it securely you will not be able to retrieve it later. This is the value we need.

The Application (client) ID and Directory (tenant) ID can be found on the application overview page under Essentials. Once you have all four values (client ID, tenant ID, secret and domain), you can send them to us securely for example via https://onetimesecret.com/.

Enable SSO with TimeChimp

After you have collected all required details, send them together with your request to our support team at support@timechimp.com. They will help you enable and configure SSO for your organization.

Single Sign-On expired

When the client secret for your SSO configuration has expired, sign-in via Single Sign-On will no longer work. Have you created a new client secret? Send it to ict@timechimp.com. Our team will update the secret so the SSO connection works again.

Did this answer your question?