Requirements:

  1. Limble CMMS SSO usernames are always email addresses.
  2. Limble does not support active directory accounts without email addresses attached.
  3. Azure active directory users must have at least a first and last name in their profile.

Step 1: Enable SSO in Limble

  • Login Limble CMMS and go to “Manage SSO” under “Advanced Settings”
  • Select “Azure Active Directory” from the dropdown list
  • Click “Enable SSO”

Step 2: Enable SSO w/ an Azure Administrator in Limble

  • If you have an account with an Azure Admin email already in Limble then go to the user management panel and click the clasped hands to enable SSO for that account.
  • If you don’t have a Limble account with a Azure Admin email then create one by clicking “Add User”

Step 3: Login into Limble with the Azure Admin and consent to SSO.

  1. Sign into Limble with the Azure Admin account.
  2. Enter the admin email and when prompted click “Consent on behalf of your organization” and “Accept” this allows Azure to authenticate your users.

Step 4: Do you use Automatic Provisioning or manually sync users?

  • If you are using SCIM for automatic provisioning (recommended) please see that guide: Azure SCM Setup Guide. This allows Limble to mirror the users and groups you’ve assigned to Limble in Azure. Add a new user in Azure, assign them to a Limble group (e.g, workshop-technicians) in Azure and they will then have credentials and permissions in Limble. Deleting and editing users will also sync between the systems.
  • If you manually set up Limble users you will be responsible for keeping users in sync between Limble and Azure. Most important is to make sure that Azure UPN and Limble username match up, otherwise SSO will not work.

Step 5: Manually sync users (Not recommended)

  • Login to Azure
  • Click “Enterprise Applications”
  • Find LimbleCMMS - it appears due to the earlier step of consenting.
  • Under LimbleCMMS add the Active Directory users you want to access Limble.
  • In Limble, under “User Management” enable SSO or add users with SSO enabled for each of these Active Directory users.

NOTE: Usernames in Limble must match their Active Directory UPN (user principal name).

If you enable SSO without them matching that user may be unable to login to Limble. After their first login their username may differ.

Enable SSO for a user by either:

  • Adding a new User w/ SSO enabled.
  • Updating an old user in the "Users" tab.

** Enabling SSO for users will prevent them from being able to login the standard way; they will be forced to use SSO.

Additional Notes:

After completing this guide successfully any users who have SSO enabled will receive a welcome email with instructions for logging in with SSO.

Did this answer your question?