1Password Entra Single Sign On Setup

Overview

This outlines the steps needed when migrating from using a stand-alone password to using SSO via Microsoft Entra for Oakland University 1Password.

Email Alerts for Sign In Change

You will be receiving an email at your Oakland University email account when your 1Password account is set to change sign in methods. The email will include a link for you to click that will take you directly to the sign in page for 1Password. Please click this link if you’d like to start that process.

Email notification from 1Password about changing the sign-in method to Microsoft. Blue button says "Setup 1Password with Microsoft."

Please note: You will have 30 days in which to do this. After 30 days, you will lose access to your 1Password account and will need to submit a support ticket so we can recover your account.

Setting up your 1Password account to use Entra SSO

Please make sure you are not using incognito/private mode to do these steps. Access 1Password for these steps in a normal browser session.

  • Sign into 1Password using your password like normal.

Login screen for 1Password with QR code option. Includes instructions, input field for email, and 'Continue' button. Clean, minimalist design.

  • Upon completing Duo multifactor authentication, you will be greeted with a notice that looks like this:

Illustration of a spinning, colorful lock with text "Your sign-in method is changing." Features a prominent "Get started" button in blue.

  • Please click Get Started.
  • In the next screen click Sign in with Microsoft in the bottom right corner.

Microsoft sign-in page displaying options for new sign-in or device setup, with instructions. A warning about incognito mode is highlighted. A blue 'Sign in with Microsoft' button is at the bottom right.

  • This will open up 1Password’s sign-in screen, only you now have a Sign in With Microsoft option in place of where your password box would be. Click this option.

Login page with "Sign in to Oakland University" text and an option to "Sign in with Microsoft" highlighted. A padlock icon is also visible.

  • This will take you to Oakland University’s Entra login screen. Login with your netid@oakland.edu credentials.

Oakland University login screen overlaid on a campus view. Fields for email and password entry are shown, with options for account creation and assistance.

  • Once logged in with Entra, it will return you to a screen that will let you either set up browser alerts if you so choose, or to view your profile. Please click View Profile.

Sign-in screen for Microsoft, showing options to begin a new sign-in or set up other devices. Includes steps to enable browser notifications.

If you have the browser extension or desktop app installed, you will now have to log into them using Microsoft Entra as well. This involves authorizing your account now using SSO to access what you used to access using your password, by way of transferring an encryption key.

  • If you have the 1Password browser extension installed, you may see a notice stating that you need to transfer your encryption key. 

Pop-up message for transfer encryption key from a new app or browser, showing a phone with a lock icon. Options to "Transfer key" or "Deny" are highlighted.

  • Click "Transfer Key"
  • You will have a code displayed in the following window. Copy this code. Do not click cancel.

Verification code prompt with padlock icon, instructing to share code with no one. Fields: code input, expiration note, and red cancel button.

If you have the 1Password Browser Extension installed

  • Open your browser extension and you will see that you need to sign into it using Microsoft.

Dark interface displaying a login screen with a "Sign in with Microsoft" button highlighted in red. Two circular icons are shown above the button.

  • Click Sign in with Microsoft and it will open a browser. Enter your netid@oakland.edu credentials like you did previously. It will open up your browser extension.
  • You will see a notice on your extension that you need to transfer your encryption key. Copy the code you received earlier into your extension and click Submit.

Screenshot of a dialog box titled 'Transfer your encryption key' with six instructions for 1Password. Features a blue submit button at the bottom, highlighted in red, and a graphic of a lock and card at the top.

  • You will now see a message stating that your extension is authorized and will be receiving codes using this extension for other apps being set up in the same way.

If you have both the 1Password Browser Extension and Desktop App installed

  • CLOSE ALL PREVIOUS BROWSER SESSIONS
  • Open the 1Password Desktop app and click Sign in with Microsoft. This will open a browser session. Use your netid@oakland.edu credentials.
    • You may see a pop-up stating that the 1Password browser extension is trying to sign in. Click Cancel on this message.

A 1Password popup trying to unlock the browser extension shows the Oakland University logo. Options are 'Sign in with Microsoft' and 'Cancel.

  • Once cleared, it will drop you back into the desktop app.
  • You will see a message stating that you need to enter a code to transfer your encryption key. Leave this message open for now.

Pop-up window titled "Transfer your encryption key" with six steps for 1Password verification on Chrome, featuring a lock icon and input fields.

  • Open up your browser again. Go to 1Password and log in.
    • You may again see a pop-up stating that the 1Password browser extension is trying to sign in. Click Cancel on this message.

1Password prompt to unlock the browser extension for Oakland University. Options to "Sign in with Microsoft" or "Cancel." Simple interface, professional tone.

  • You will see a message stating that you will need to transfer your encryption key. Click Transfer Key.

Popup alert prompts encryption key transfer for new app or browser access. Location: Rochester, United States. Options: "Transfer key" or "Deny".

  • Copy the code that is displayed. Do not click Cancel.

A verification screen with a padlock icon, advising not to share the code. It includes a code entry box, expiration notice, and a red "Cancel" button.

  • In your app, paste in the code that you just copied to the Transfer Encryption Key message in the 1Password desktop app we left open earlier. Click Submit.

Instructions for transferring encryption key using 1Password. Steps detail signing in, managing account, and entering a verification code. A blue 'Submit' button is prominent at the bottom, framed by a red outline.

  • You will see that this app is now linked. Click Done.

Popup message with a green checkmark stating "This app is now linked," confirming 1Password setup. A "Done" button is at the bottom.

Afterwards

After you have set this up, you may get an alert that your account was used to log into a browser extension or app that 1Password hasn’t seen before. This is normal as you just set up sign in on them. 

Email notification from 1Password about a new sign-in. Alerts user of an unfamiliar device using a Chrome extension from Michigan, U.S. Prompts action if unrecognized.

FAQs

What if I have a personal 1Password vault that I have my Oakland University vault linked to in order to log into both with one password?

You can view both accounts in the unified view, but each account needs its own respective authentication method. SSO will only work to unlock your Oakland University account. You will still need to use your master password to unlock your personal account.

Please see this 1Password support page for more details.

Your free “1Password Families membership” is not included in this transition, and UTS/OUTC is unable to provide support for those accounts.

Will unlocking via biometric methods still work when SSO is enabled?

Yes.

I am being asked for a Login URL - what is it?

Our signin URL is oakland-university.1password.com Please use that when asked for a login URL. For instance, on the Desktop App:

Additional Troubleshooting steps for 1Password using SSO

Please see instructions from 1Password support here.

Sign-in prompt for 1Password with a QR code on the left and input fields for email and sign-in address on the right. Dark background, instructional text below.

Additional Support

  • OU Technology Center
  • 44 Oakland Center
  • Rochester, MI 48309-4479
  • (248) 370-4357
  • Office Hours: M-F 8:00am - 5:00pm
Print Article