CoSN Community

Expand all | Collapse all

SSO Platform Options

  • 1.  SSO Platform Options

    Posted 10-30-2018 21:08
    Greetings, I'm wondering if anyone has any insights on SSO platform options for providing users with quick and easy access to managed online services across devices. I have some familiarity with Clever and ClassLink so I'm wondering about the pros/cons as well as other solutions that might be viable. Any information or recommendations would be most appreciated.

    Matt McGoldrick
    Assistant to the Chief Technology Officer
    Montgomery County Public Schools, MD

  • 2.  RE: SSO Platform Options

    Posted 10-31-2018 12:33
    At Fremont Public Schools we are using several options for SSO.  Our user data dumps directly into our local AD (Active Directory) from our SIS(Skyward).

    Once in our AD, we have federated logon to Office365 using our ADFS System and Azure ADConnect setup to sync the directory.  We also sync our AD with Google Suite and use G Suite for authentication via password sync.

    In Michigan, we have the MIDataHub (Home).  This is where participating districts can sync their SIS via API and use statewide API's to load data into different applications we all work with using the EdFi Standard.  We are also Federated with MIDataHub directly for SSO with any application vendors we use though them that support it.

    Clever is free (to schools) and will allows syncing and SSO for many applications.  it does require quite a bit of setup on your end.  Classlink is a pay service but they do much more of the setup work for you.

    For me, it's a matter of finding the service that meets the most of your needs with the least effort and cost.  Fortunately in Michigan, we have the benefit of the datahub.  If it weren't for that, we would likely be using Clever.

    Hope this helps!

    Rick Webb
    Director of Technology
    Fremont Public Schools
    Fremont MI
    (231) 924-8191

  • 3.  RE: SSO Platform Options

    Posted 30 days ago
    I realize you aren't talking about passwords and security, but when we were looking at SSO options, this was our primary driving force. The one landing page for all apps was a bonus moving forward.

    We run Active Directory here on site and much like Rick's post have users dumped into our AD from our SIS and then those synced to Google.

    We are still working on SSO landing pages like you have discussed and evaluating what resources we are currently using in the classrooms. This will help us decide which one to use. We are also supposed to be getting OneRoster capabilities from our SIS this year which will open up possibilities for selecting our SSO integrator.

    Okta is another SSO in addition to Classlink and Clever that we started to implement, but we steered away from after a lot of testing and near implementation. Overall, the problems we had with Okta were when connecting more apps, they wanted more money and they wanted their cloud directory to be authoritative instead of our AD. You can read more information on our setup and discussions that influenced where we went here on Google+ in the GSFE Admins community. Jon Leichty is our network admin that posted information there.

    Good luck! I am interested to see which way you guys go.

    Jeff Thoman, CETL
    Director of Information Technology
    Springfield-Clark Career Technology Center
    Springfield OH
    (937) 325-7368 (110)