Skip to main content
All CollectionsFunctional descriptions
Provisioning
Provisioning

Functional description

Updated over 5 months ago

High-level description

For easy onboarding and offboarding of users, Welcome ensures automated provisioning of access rights upon the first login of end users:

  • The company administrator sets up the desired standard access rights for their users.

  • When users log in for the first time using Single Sign-On (SSO), they are automatically granted these access rights.

  • If a user account is added via Single Sign-On (SSO), the account can no longer be logged into if it no longer exists in the company's directory service.

How it works

Automated provisioning

With Single Sign-On (SSO)

When Single Sign-On (SSO) is set up, end users are automatically granted the rights specified as standard for the company upon login. Changes in user information are fetched from the company's directory service upon the next login in Welcome. When an account is terminated in the company's directory service, the account is also removed from Welcome shortly thereafter.

Without Single Sign-On (SSO)

If the company does not have a Single Sign-On (SSO) service, accounts created in Welcome with the same email domain as the company are granted the rights specified as standard for the company. Changes and deletion of accounts must be done manually by the company administrator.

Manual Provisioning

If the company has associated users who do not have email addresses belonging to the company, the company administrator can provision these in their own company after the user has logged in for the first time (created an account).

Roles and Responsibilities

Role

User without SSO

User with SSO

Company Administrator

Real Estate Administrator

Description

User associated with a company that does not have SSO, or hired from another company

User who logs in via the company's SSO provider

Administrator of the company's setup and access rights

Administrator of the basic setup for a company, including SSO provider

Function Matrix

Function

Description

Automatic Updating of User Data

Upon login, updated user data is fetched from the source via SSO

Automatic Provisioning

Via SSO (Microsoft Azure, Google Workplace)

Related Articles
Setup of Single Sign-On (SSO)
Single Sign-On (SSO)
Visitor Management
Access Control
Choosing a Login Method: SSO vs. Passwordless Email Sign-On
Did this answer your question?