Single Sign-On (SSO)
Engage – Microsoft SSO (Single Sign-On) Overview
Engage supports secure login using your Microsoft work account. This allows your team to sign in quickly using the same credentials they already use in Microsoft 365, without needing a separate Engage password.
How Microsoft SSO Works in Engage
When someone from your organisation signs in with Microsoft for the first time, Microsoft may show a permission screen asking whether Engage is allowed to read the user’s basic profile information (name, email, etc.). Engage only requests the minimal access required to verify who the user is.
This approval happens once per organisation.
Consent Options
1. Individual User Consent
If a regular employee signs in first:
- They will be asked to approve the permission for their own account only.
- Other users in your organisation may also see the approval screen on their first login.
This is completely normal and depends on your organisation’s Microsoft settings.
2. Admin Consent (Recommended)
If a Microsoft Administrator / Global Admin / Super Admin signs in and approves the permission:
- They can approve the permission on behalf of the entire organisation.
- When this happens, no other users will be asked for permission again.
- All employees can log in to Engage smoothly without any additional steps.
Most organisations prefer this option because it provides a seamless login experience for all staff.
Example of consent dialog:
Why Permission Is Required
Engage uses your Microsoft profile information (like email and name) only to:
- Confirm your identity
- Match you to the correct user in Engage
- Allow secure password-less login
We do not access your emails, files, calendar, or anything else.
Only basic profile information is retrieved, and only after you or your admin grant permission.
