Note: All pages below are subject to having relevant Roles and Permissions.
Single Sign-On enables a school to permit its staff to sign into the Bromcom MIS using existing Microsoft or Google accounts. This precludes the need to remember standard Bromcom Usernames and Passwords created in System Users. Additionally, staff can be prevented from using these system-defined logins by disabling the functionality.
This article will show you how to:
- enable single sign on for staff;
- remove single sign on for staff;
- set up single sign on as an individual member of staff; and
- link multiple user accounts to Bromcom (Office 365 and Google only).
IMPORTANT: Bromcom has some external applications which still require a standard Username and Password, such as Timetable and Behaviour Pathways. It is advised that new user logins be created for these specific purposes to avoid difficulties using these applications.
IMPORTANT: single sign-on works for a single system. If you are setting up single sign-on on a test or demo system, you must Remove Link before you start using your live system, or the Account will not link to your live system.
Enable or Remove Single Sign On for Staff
From the left Menu go to Config > Setup > Security Settings.
Select Single Sign–On Providers Configuration and tick the box, Enable Self Registration. If required, also check Disable Authentication for Mapped Bromcom MIS Accounts to prevent staff from using the standard issue login.
This will now allow Staff to link their own Single Account with Bromcom
Remove Single Sign On for Staff
From the same page, Click View Linked Accounts and Select the Staff where you want to remove the single sign-on, and select Remove Link.
Set up Single Sign On for Individual Members of Staff
First login is required using the standard Bromcom login process.
Next, from the dropdown option next to the User Name select My Account.
Select the appropriate Single Sign–On provider.
Complete the sign in details and any further security information requested by the provider.
The Linked Account will now be displayed instead of the options to link to a provider. This link can be broken by using the delete icon. Click the Save button to complete the process.
Link Multiple User Accounts (Google or Office 365 only)
Linked Accounts can be viewed from this Settings page using the View Linked Accounts option.
Click on the View Linked Accounts button and then select the Show Accounts without Single Sign-On radio button. This will list all of the Accounts without a Single Sign–On option.
From the Grid Actions click on the the CSV option, this will Export the list to CSV.
Here you you can update the Single Sign on Account column.
Now you are ready to Import the file.
Click on the Import button, Browse for your CSV file, select the columns to match criteria and either Microsoft or Google for the Sign-On and click the Import button. A Confirmation showing the number of changes will be displayed, select either Cancel or Proceed.
IMPORTANT: make sure that the data the system is using to match accounts is not changed before you attempt the import as this could cause credentials to be linked to the wrong account.
After this, Users will be able to login to the system with their own Google or Microsoft Account, without the need to know their BROMCOM account details.
IMPORTANT: single sign on works for a single system. If you are setting up single sign-on on a test or demo system, you will need to Remove Link before you start using your live system, or the Account will not link.
Single Sign-On Quick Guide
SSO account ‘already linked to another user on the system’ message?
If a user is unable to login to the MIS with their SSO account and they receive the message ‘already linked to another user on the system’. Then click on the link below.
Once the page has opened select the provider they are using to link the account, Microsoft or Google.
They will see a list of the schools the account is linked with. Click on the relevant one to remove the link.
Once done they will need to login to the MIS with their MIS username and password and relink your account.