Details about this thread
  • Replies 0 replies
  • Subscribers 314 subscribers
  • Views 84 views
  • Users 0 members are here

SugarIdentity: The Central Hub for User Authentication in SugarCRM

Will Dietrich

SugarIdentity: The Central Hub for User Authentication in SugarCRM

What is SugarIdentity?

SugarIdentity is the authentication and user management service for SugarCRM. It provides a secure way to manage user authentication, passwords, and login settings. SugarIdentity is the only place where administrators should manage user credentials and authentication settings. However, roles, permissions, and team assignments must be managed separately within SugarCRM’s User Management module.

Why Use SugarIdentity for User Authentication?

Before SugarIdentity, user authentication details had to be updated manually within SugarCRM, leading to potential inconsistencies and security vulnerabilities. Now, SugarIdentity ensures that all user login credentials are managed centrally and securely.

Small blue diamond One Secure Authentication Hub

SugarIdentity centralizes all authentication details, including user credentials, Single Sign-On (SSO), and Multi-Factor Authentication (MFA), providing a streamlined login experience.

Small blue diamond Improved Security

With support for Multi-Factor Authentication (MFA) and Single Sign-On (SSO), SugarIdentity ensures modern security best practices, reducing the risk of unauthorized access. SugarIdentity also simplifies password management by handling password resets directly. The password reset emails are sent through SugarCRM's hosted reset server, eliminating the need for customers to configure their own email server. This reduces potential accessibility issues and ensures users can reliably reset their passwords without additional setup.

Small blue diamond Available for On-Site and Cloud Deployments

SugarIdentity is available for both cloud and on-site SugarCRM installations, ensuring a consistent authentication experience across different environments.

What Happens When You Manage Users in SugarIdentity?

When an admin creates or removes a user in SugarIdentity, their authentication details are automatically applied across SugarCRM. However, certain aspects of user control, like roles and team assignments, must still be handled separately within SugarCRM.

What’s Managed in SugarIdentity:

White check mark User Creation & Deletion – Adding or removing users from SugarCRM authentication services. 
White check mark Authentication Details – Managing login credentials, SSO settings, and MFA. 
White check mark Basic User Information – Updating names and email addresses for authentication purposes.

Best Practices for Managing Users in SugarIdentity

To ensure a smooth and secure experience, follow these best practices:

Bulb Create, update, and remove users in SugarIdentity—but manage their roles and teams in SugarCRM. 
Bulb Use SugarCRM’s User Management module to assign roles and permissions. 
Bulb Enable Multi-Factor Authentication (MFA) for added security. 
Bulb Use Single Sign-On (SSO) where possible for a simplified login experience. 
Bulb Ensure user email addresses are correct in SugarIdentity, as they are used for login credentials.

Troubleshooting Common Issues

If a user is experiencing login or access issues, try these steps:

  1. Confirm the user exists in SugarIdentity – Check that they have been created and activated.

  2. Verify login credentials – Ensure they are entering the correct email and password.

  3. Check the User Management module in SugarCRM – Confirm that their roles and teams are properly assigned.

  4. Confirm authentication settings – If using SSO or MFA, verify that they are properly configured.

  5. Contact SugarCRM Support – For further troubleshooting, visit the SugarCRM Support Portal.

Get Started with SugarIdentity

With SugarIdentity, you can manage user authentication securely and efficiently.

Link Learn more: SugarIdentity Documentation Link Need help? Join the discussion on SugarClub