Skip to main content

Microsoft Authentication and Access

Ally for Web does not support full SSO (such as SAML or LDAP). Instead, users log in with their Microsoft account and then complete a verification step by email.

Procedure. Perform the one-time admin setup

  1. Before users can log in, a Microsoft admin needs to approve Ally in your organization.

  2. Go to https://entra.microsoft.com.

  3. Go to Applications > Enterprise applications.

  4. Find the Ally application, which appears after the first login attempt.

  5. In the Ally application, go to Permissions.

  6. Select Grade admin consent for your organization.

Procedure. Ally user login flow

  1. Open the Ally report link.

  2. Enter your institutional email.

  3. Sign in with Microsoft.

  4. Check your email for a verification code.

  5. Enter the code to access the report.

Troubleshooting

Users will always get a verification code by email. If no email is received, check spam or confirm the email matches the Microsoft account.

If login fails, check that admin consent was completed.