Google Single Sign On
If you have a gmail account or if you have Google hosted private email you can use the Google single sign on option. Once signed in to Buddy Punch go to the upper right hand corner to access your profile. Youโll find instructions on how to link your account with Buddy Punch.
Okta Single Sign On
Okta offers company directory integration, identity and access management (IAM) application management along with security authentication methods such as SAML. Okta has some setup instructions for Buddy Punch located here, but weโd ask that you first reach out to us to start using Okta.
OneLogin Single Sign On
OneLogin allows businesses of all sizes to connect their directory and applications to a centralized platform with a single set of credentials. OneLogin offers SAML-based authentication, Active Directory Integration, as well as user provisioning. Please reach out to us if youโre a OneLogin user and we can get you setup.
Saml 2.0 Single Sign On
Please reach out to us if youโre using a different Saml 2.0 integration.
How does Single Sign On for Time Tracking Work?
SSO is apart of a larger concept called Federated Identity Management (FIM) โ a system that allows users at separate businesses or enterprises to use the same verification method to access apps. In short, it connects different enterprises through a third service that stores credentials for secure access. These authorizations are sent using Security Assertion Markup Language (SAML) or similar XML standard. Examples of FIM systems include OpenId Connect (OIDC) and Open Authorization (OAuth 2).
The identity provider keeps the information for all user accounts.
The service provider is the software being used by a company โ such as Buddy Punch for real-time tracking and digital timesheets.
SSO Lets you use multiple service providers with the same user credentials from the identity provider (such as Gmail or Microsoft Azure โ though we currently donโt have the latter as an option).
Why use SSO?
SaaS apps with SSO are known to improve automation, streamline user authentication (while remaining secure in enabled permissions), and enable customized workflows. For most people, the user experience will remain simple (besides rare situations like password resets). Underneath their logins, powerful systems are at work to verify the authentications โ such as Active Directory (sometimes known as Microsoft Active Directory), Active Directory Federation Services (ADFS), and Lightweight Directory Access Protocols (LDAP).
ADFS supports SAML and OIDC, Microsoft Active Directory supports NTLM, and LDAP is used in the access control process to ensure the userโs access is meant to be granted.
How Do You Pick Identity Providers?
We base this on how they handle the saving and encryption of login credentials, their API, and their ability to integrate with Buddy Punchโs existing framework. Weโre always willing to accommodate our clients, so let us know if you want a SSO Solution that isnโt currently listed on this page.
If you like the idea of SSO, consider looking into Multi-factor authentication as an added layer of security for your business.
Other Features
We know how important it is to have a robust set of features and functionalities to help you better manage your employees and their time. We pride ourselves on offering many features that are not provided by several other time tracking systems. Whether you are looking for simple yet powerful features such as PTO Accruals and Overtime Calculations or more advanced features such as Geofences and QR Codes โ we have got you covered! Make sure to check out all of the Other features we offer.
GPS
Want to make sure your employees are punching time at their workplace or jobsite? With our GPS feature, you can capture the coordinates of an employee whenever they punch in or out. A map of their location is shown directly on your dashboard for easy viewing as well as on the employees time card.