19
A customer asked about the possibility of using Single Sign On for MPOS/CPOS

The business case is: The customer has POS and other single sign on application the user uses installed on the PC. The customer wants all user to have their own Windows logon and not a common user logon into Windows for all POS users. The customer wants to have a single sign on for applications and a fast switch in Windows to switch between POS users.

Looks like there are fundimental things that need to be changed regarding MPOS/CPOS, so this can work, like the activation process.

The idea regarding the activation, would have to be changed from being activation per userprofile per device, over to one activation per device. That could make it possible to run more than one instance of MPOS, with the same teraminlId.

Could maybe also be a fist step over to a easier switch between environments for developers if the activation would be changed to make it possible to change the config in the DLLHost.exe.config file to allow the developers to switch environments.
STATUS DETAILS
Completed
Ideas Administrator

POS sign-in with AAD single sign-on is supported in 10.0.19 release and later. Please check feature doc Configure Azure Active Directory authentication for POS sign-in - Commerce | Dynamics 365 | Microsoft Docs for more details. - Boyce Zhu, Principal Product Manager for Dynamics 365 Commerce

Comments

H

Up voting this Idea.

We are getting the same request from our Customers.

Regarding the Activation process, we are good with the current way that is handled, and how the Authentication is setup for RSSU deployments of Retail Server. Not easy but doable.

Regarding signing in as a Cashier/Store Manager to MPOS or CPOS it would benefit for organizations that centralize their user management on Active Directory (AAD or simple AD). Multiple times required by Audit purposes.

Some details to consider to share for this Idea:
-In an RSSU or MPOS Offline Scenario in which the Store or Terminal does not have connection to the AD to authenticate we envision 2 possible scenarios
scenario 1 - Deploy a sort of AAD replication service, that could be achieved is the Organization runs a local Active Directory that is synch with Azure AD
scenario 2 - While connected to internet allow the Single-sign on with the Azure Credentials that are properly mapped to a Worker in Dynamics 365 Commence ( D365 for Retail), but if offline, resort to the standard WorkerID-Password scenario.

Category: Employee Management