Single sign-on lets students and staff access web hosting and teaching platforms with their existing institutional credentials — typically Microsoft Entra ID — instead of separate hosting passwords. For IT teams it removes hosting password resets, keeps access inside institutional identity governance and conditional access policies, and ties account lifecycle to enrolment.
The problem with hosting passwords
Give a cohort of students separate hosting credentials and three things follow: a steady stream of reset tickets, credentials that outlive enrolment, and a set of accounts outside every institutional security policy. SSO removes the separate credential entirely.
How Entra sign-in works with student hosting
Student Web Host Manager works with Microsoft Entra (formerly Azure Active Directory): students and staff sign in with university credentials, access is role-based, and conditional access applies where institutionally configured. Cover Manager supports Entra sign-in for school staff in the same way. Cloud Pulse can integrate with institutional identity providers, including Entra ID, where an institution configures SSO.
Under the hood, education SSO deployments typically use standard federation protocols (such as SAML or OpenID Connect); the specifics for a deployment are confirmed during onboarding rather than assumed.
From ADFS to Entra: the direction of travel
Institutions that federated with on-premises ADFS a decade ago have largely consolidated on Entra ID. If you are evaluating platforms, the practical question is no longer 'does it support our federation server' but 'does it join our Entra tenant cleanly, and do our conditional access policies apply' — both worth confirming during scoping.
What SSO changes operationally
- Hosting password resets largely disappear from the service desk
- Leavers lose platform access when they lose institutional identity
- MFA and conditional access policies extend to hosting automatically where configured
- One identity across hosting, labs and operational platforms
- Auditability: access maps to real institutional identities

