Core mechanic
In SSO, there's a central identity provider (Onremo, Okta, Azure AD). All systems recognize this provider.
When a user signs in once to the central provider, every other connected system accepts them automatically. The password isn't asked again; only a token exchange happens.
Tokens are typically valid for a few hours. When they expire, the user re-authenticates with the central provider — again, only once.
Protocols
OAuth 2.0 / OIDC — Modern, mobile-first. Onremo's standard.
SAML — Older, XML-based, widespread in enterprise IT.
SSO at Onremo
Onremo provides SSO for every system built by Aigap. With one Onremo account, you reach Randevu Plus, Helio CRM, or any other system bought from the Store, in one click.
Detailed: What is SSO and why it makes your business easier.