Onboarding and Login
      Back to home
      1. Help Center
      2. 👥 User Management and ahead ID
      3. Onboarding and Login

      Breaking down Login flows in ahead

      A step-by-step overview of what users experience based on your organization's setup

      This article outlines all possible login flows for ahead users. It’s intended for existing ahead customers whose users are currently managed exclusively through Microsoft Entra ID. This means that the ‘ahead ID users’ feature has not yet been enabled (in Company Settings).

       

      How the flows are organized

      The login flows are structured into two main categories, based on whether the Custom Domain premium feature is enabled:

      1. Organizations with Custom Domain enabled
      2. Organizations without Custom Domain

      If you're unsure whether your organization has Custom Domain enabled, or if you’d like to enable it, please reach out to your Customer Success Manager (CSM).


      Within each category, login flows may vary based on:

      • Device type:
        • Web browser (desktop or mobile)
        • Mobile app
      • Login context:
        • First-time login
        • Subsequent login


      1 - For organizations with Custom domain enabled

      Scenario 1A

      First login for users on the browser (desktop or mobile)

      Login flow:

      1. Enter username (in the Microsoft flow)
      2. Enter password (in the Microsoft flow)
      3. Logged in!

      Entra ID user browser full MS flow

      Scenario 1B

      First login for users on the mobile app

      Login flow:

      1. Press ‘log into ahead’ (in the ahead welcome screen)
      2. Enter username (in the ahead login screen)
      3. Enter password (in the Microsoft flow)
      4. Logged in!

      Entra ID user mobile app

      Scenario 1C

      Subsequent login for ALL users (browser or mobile app)

      Login flow:

      Depends on the Conditional Access Policy of the organization:

      • If no new login is required, the user is logged in directly.
      • If an interaction by the user is required (e.g. provide the password, change the password, etc.), the user is taken to the respective Microsoft screen (e.g. enter password screen)


      2 - For organizations without Custom domain

      Scenario 2A

      First login for ALL users (browser or mobile app)

      Login flow:

      1. Enter username (in the ahead login screen)
      2. Enter password (in the Microsoft flow)
      3. Logged in!

      Entra ID user browser mixed flow

      Scenario 2B

      Subsequent login for ALL users (browser or mobile app)

      Login flow:

      Depends on the Conditional Access Policy of the organization:

      • If no new login is required, the user is logged in directly.
      • If a interaction by the user is required (e.g. provide the password, change the password, etc.), the user is taken to the respective Microsoft screen (e.g. enter password screen)