Checking If General SSO Works
Please perform the following steps to check if general SSO works:
Click on Login in the top right corner
Click on the appropriate button
Special Case - Microsoft Office 365
The "Sign in with Microsoft" button will NOT work for Office 365.
This button is only for consumer Microsoft accounts (Hotmail, Xbox, etc.).
Follow these steps for Office 365 SSO:
Open a ticket asking for SSO enablement
Include your Office 365 domain name(s)
Wait for a response from our support team
Click on Login in the top right corner
Type your email
The password field should disappear
Click on "Log In"
- Follow the steps
- You may be asked to verify your email address
- You may be prompted to authorize our application

If you cannot authorize our application because you have insufficient permissions in Office 365, ask your Office 365 admin to perform one of those steps.
Option #1 - Start Free Sales Cookie Trial
Ask your Office 365 admin to perform the same steps above
This may start a free trial which is harmless
No credit card information is required
Option #2 - Use Entra ID Admin Center
Browse to Entra ID > Enterprise Applications > All Applications
Search for application "Sales Cookie Commissions"
If NOT listed, try option #1 or #3
Click on the application
Click on "Permissions"
Click on the "Grant Admin Consent" button
Option #3 - Use a Consent URL
Generate a consent URL
Replace {your-tenant} with a domain verified in your tenant (ex: mycompany.com) or your tenant ID
Ask your Office 365 admin to browse to this URL
Authorize the app for all users
Ignore errors after approval
Once your Office 365 admin has completed those steps, try logging in again with your own account.
Finally, if this still does not resolve the issue, ask your Office 365 admin to check security settings.
Office 365 settings may prevent some users from using our app to login.
Browse to Entra ID > Enterprise Applications
Click on "Conditional Access" and review rules
Some users may be blocked from using any third-party app
Click on "Consent and Permissions" and review rules
Click on "Admin Consent Requests"
Check if you have pending consent requests from users
Browse to Entra ID > Enterprise Applications > All Applications
Search for application "Sales Cookie Commissions"
Click on the application
Click on "Properties" and review settings
Click on "Self-Service" and review settings
Click on "Conditional Access" and review rules
Blocking Other Login Methods
Once SSO works, optionally block logins via other methods / providers:
Login to your workspace
Click on Settings > Security > Manage Settings on the left navigation bar
Enter values in this field
Common values include
"salesforce" for SalesForce
"quickbooks-online" for QuickBooks
"google" for Google
"windowslive" for Microsoft Consumer Accounts
"waad" for Microsoft Office 365 (Windows Azure AD)
"xero" for Xero
If these steps did NOT work, or you have a different identity provider, custom SSO is required:
The more expensive Sales Cookie Business+ plan is required
Special configuration steps are required (please see below)
Additional fees may apply to setup custom SSO
Configuring Custom SSO
If these steps did NOT work, custom SSO is required. Special steps need to be performed by both you and us (Sales Cookie) to establish trust. Custom SSO is typically required when you have customized your authentication, or you require a different identity provider.
Depending on the platform you are using, typical configuration steps may include:
Registering an application in your tenant (ex: creating an Azure AD application)
Setting up SAML records in your tenant
Downloading X509 certificate / OAuth secrets
The method used to configure SSO varies greatly from provider to provider, but will require manual intervention. On our end, Sales Cookie uses Auth0 for all authentication. Auth0 is part of the Okta product family. Here are a few examples of what steps may look like - both on your end, and our end (Auth0):
Because of the complexity of setting up custom authentication, we require the more expensive Sales Cookie Business+ plan. Besides the cost of configuration, this helps us cover the cost of Auth0, whose pricing model requires additional fees for each custom SSO enterprise connection. Please reach out to support for help configuring custom SSO. Additional fees may apply as well.