Single Sign-On (SSO) is currently available with Geneious Enterprise, and supports both SAML 2.0 and OIDC protocols. SSO allows your users to activate Geneious Prime with their organization/institution password and can be configured to integrate with existing identity providers such as Microsoft Entra ID, Okta, JumpCloud and Shibboleth.
This provides benefits such as:
- No need for each user to create a password for Geneious
- Only allowing email addresses under your organisational domain to access your license
- Enforcement of security policies such as multi-factor authentication (MFA) and password strength
- Account lock out when someone is off-boarded from your organisation
Note that users are not automatically assigned a seat unless user provisioning (SCIM) is also configured - an admin stills need to add each user by email so you can control who has a seat. See Directory Sync (SCIM) Guide for more details.
View our setup guides for different identity providers, or contact us for more information.
For general guidance on administration of Geneious, see Administration of Team and Enterprise subscriptions.