Managing multiple passwords across different systems isn’t just a hassle—it’s a security risk. Weak or reused passwords increase the chances of unauthorised access, creating vulnerabilities for your organisation. That’s why enterprise-grade Single Sign-On (SSO) is integral to providing a simplified user access process for your administrators while also significantly strengthening your security posture by centralising authentication.
With SSO, your organisation can:
✅ Reduce password fatigue and login friction for administrators.
✅ Minimise security risks by centralising access control.
✅ Enforce strong authentication policies, including multi-factor authentication.
Introducing Admin Single Sign-On (SSO) for the JLP Admin Portal
We’re rolling out SSO authentication for the Jumbo Lottery Platform (JLP) Admin portal in two phases, designed to streamline access management and enhance security.
Phase 1: SSO Authentication (Available Now)
The first phase enables secure SSO login for administrators, reducing password-related risks while providing flexible authentication options to suit your organisation’s security policies.
🔹 Flexible Authentication Options
- Administrators can log in using either their existing JLP credentials or via a supported Identity Provider (IDP) such as Microsoft Entra ID or Google Workspace.
- This hybrid approach gives you control over the transition—you can:
- Enforce SSO for all administrators immediately
- Gradually roll it out over time
- Keep password-based login as an option
🔹 Multi-IDP and Domain Support
JLP supports multiple IDPs and domains, making it easy to manage authentication across different user groups. SSO automatically routes each administrator to the correct IDP based on their email domain.
For example:
✅ Internal staff with @yourcompany.com.au emails are directed to your company’s Microsoft Entra ID.
✅ External agents with @agentcompany.com.au emails are routed to their respective organisation’s IDP.
🔹 Enhanced Administrator Management UI
We’ve improved the Manage Administrators interface to provide IT teams with greater visibility and control:
- A new, intuitive page listing all administrators.
- A redesigned account creation and editing experience, including audit tracking of changes.
- Simplified password reset functionality for administrators.
Phase 2: SSO-Based Account Provisioning (Coming Soon)
Phase 2 will build on SSO authentication by introducing automated account provisioning and permission management—reducing IT workload and ensuring secure, up-to-date access control.
🔹 Automated Permission Mapping
- Permissions from your IDP will be automatically mapped to JLP, making role assignments easier for administrators.
🔹 Automated Account Provisioning
- When a new administrator is added to the designated group in your IDP, their JLP account will be automatically created upon first SSO login—eliminating the need for manual account setup.
🔹 Automated Account Deactivation
- When an administrator account is disabled in your IDP, their JLP access will be automatically revoked, reducing the risk of orphaned accounts.
What You Need to Know
The introduction of Admin SSO may require updates to your organisation’s IT policies. We recommend:
✅ Reviewing your current authentication and access policies.
✅ Identifying any necessary changes to support SSO.
✅ Preparing for the Phase 2 automation rollout.
We’ll provide detailed guidance and documentation closer to the Phase 2 release. Stay tuned for updates!
If you have any questions or need support, reach out to our team—we’re here to help.
We are committed to continually improving our product and support, and value your feedback. If you have any questions or suggestions about this update, please don't hesitate to contact us by emailing support@poweredbyjumbo.com