Axya supports Single Sign-On (SSO) so your team can log in using your organization's existing identity provider. This eliminates the need for separate passwords and gives IT administrators centralized control over access.
No separate Axya password is needed. Users authenticate through the same system they use for all their other enterprise applications.
Axya uses an identity broker that supports the SAML 2.0 and OpenID Connect (OIDC) protocols. This means it works with virtually any enterprise identity provider, including:
| Identity Provider | Protocol | Setup Guide |
|---|---|---|
| Microsoft Azure AD / Entra ID | SAML 2.0 / OIDC | Azure AD Setup Guide |
| Okta | SAML 2.0 / OIDC | Okta Setup Guide |
| Google Workspace | SAML 2.0 / OIDC | Google Workspace Setup Guide |
| OneLogin | SAML 2.0 | OneLogin Setup Guide |
| Ping Identity / PingOne | SAML 2.0 / OIDC | Ping Identity Setup Guide |
| JumpCloud | SAML 2.0 | JumpCloud Setup Guide |
| AWS IAM Identity Center | SAML 2.0 | AWS IAM Setup Guide |
| ADFS (Active Directory Federation Services) | SAML 2.0 | ADFS Setup Guide |
| Other SAML 2.0 / OIDC providers | SAML 2.0 / OIDC | Contact us at security@axya.co |
Don't see your provider? If your identity provider supports SAML 2.0 or OpenID Connect, it will work with Axya. Contact us at security@axya.co and we'll configure it for you.
To set up SSO for your organization, send the following to security@axya.co:
| Information | Description |
|---|---|
| User domain name | The email domain used by your team (e.g., user@yourcompany.com) |
| Application / Client ID | The identifier assigned to the Axya application in your identity provider |
| Client secret | The secret key generated in your identity provider for secure communication |
| Authorization endpoint URL | The URL where authentication requests are sent |
| Token endpoint URL | The URL where authentication tokens are exchanged |
| Test account | A test user with valid credentials for Axya to validate the SSO flow |
Tip: For Azure AD, see the detailed Azure AD setup guide with step-by-step instructions.
Once you send the required information, the Axya security team will:
Is SSO required?
No. SSO is optional. Users can continue to log in with email and password if SSO is not enabled for their organization.
Can we use SSO and password login at the same time?
Yes. SSO is enabled per email domain. Users whose domain has SSO configured will be redirected to the identity provider. Other users can still use password-based login.
Does Axya support MFA through SSO?
Yes. If your identity provider enforces multi-factor authentication, those policies apply automatically when users authenticate through SSO to access Axya.
What happens if our identity provider is down?
Users will not be able to log in via SSO during an outage. Contact security@axya.co for emergency access options.
How long does SSO setup take?
Typically 1-2 business days once you provide the required information. The Axya security team handles all configuration on our side.
Is there an additional cost for SSO?
Contact your Axya account representative for licensing details.
To get started with SSO, contact the Axya security team at security@axya.co.