What are the steps in onboarding a hybrid customer?

An Application manager in your Simpplr instance needs to:

• Configure the Simpplr IdP (Non-SSO) for deskless users

• Configure the provisioning source for knowledge workers (this can be configured as part of the external SSO configuration for or through a batch job for Google)

• Upload deskless users via CSV upload

How does my org's admin configure Simpplr SSO settings?

Your admin/App manager can configure Simpplr SSO under Manage > Application > Security > Simpplr IdP (Non-SSO).

How does the admin perform the initial loading of deskless users?

Deskless users' data can be loaded through bulk CSV upload in Manage > Users.

Does Simpplr support multi-factor authentication (MFA)?

No. as of the 23.09 release, MFA has been removed. First-time users will authenticate themselves with a one-time verification code if they use email/mobile as their login identifier and with account verification questions if they use their employee number. Existing users will continue to log in directly with their passwords without any extra authentication.

How does the admin specify verification questions for the initial login of deskless users?

Verification questions are required to be set for deskless users to log in. To complete the configuration, the App manager must select an alternate login method and at least one verification question. This configuration can be done by the App manager under Manage > Application > Security > Simpplr IdP (Non-SSO).

How do I manage updates to deskless users?

Deskless users' data can be updated through CSV or external syncing sources like Workday, Okta, etc. The external sync source job runs every midnight, right after the provisioning job.

How does a deskless user perform the initial login?

A deskless user with no email and no mobile phone can log in using an alternate login set by the App manager. Users will be asked to answer the account verification questions by entering the Alternate Id, and after that, they can set their password. In the next step, user can set their personal security questions before they land on the home page.

Simpplr will also allow users to log in through one or more different options as configured by the App manager.

SSO

• If already provisioned through SSO, users can directly log in into Simpplr
• If the user doesn’t exist in Simpplr, they are provisioned Just-in-time after first login

Email

• Users can use their email, set a password via verification code and login

Mobile

• Users can use their mobile device to set a password via verification code and log in

Alternate login (Employee Id/other unique id)

• Users can use their alternate Id and validate themselves via account verification questions set by the admin
• Users can set the personal security questions during first login

How does a deskless user perform subsequent login?

Once a deskless user is active, they can use their ID and password to log in to the application.

How does a deskless user reset their password?

Deskless users reset their passwords by answering the personal security questions they had set up during the initial login. In case of any issues, they can reach out to the App manager to reset the password for them.

How are knowledge workers (SSO) onboarded to the Simpplr platform?

Knowledge, or desked workers can be onboarded through an external SSO provisioning source. SSO users will also be provisioned Just-in-time (JIT) when they log in for the first time.

How are account verification and personal security questions different?

Account verification questions are set by the App manager to allow deskless users with no email or mobile, to login for the first time. These are a subset of users' profile fields.

Personal security questions are set by the user during their registration process after they set their password. These personal questions help users to reset their password.