Single Sign-On and Team Permissions for E-Signing

March 20266 min read

As a team grows, two questions get harder to answer: how do people log in safely, and who is allowed to see what? AirSign now answers both with single sign-on and permission groups.

Built for teams, not just individuals

A handful of users can share a tool informally. A whole department cannot. Once dozens of people are sending and signing documents, you need company-managed logins and a clear answer to who can access which documents. AirSign added two capabilities to make that manageable: single sign-on for how people get in, and permission groups for what they can do once they are in.

Single sign-on (SSO)

With SSO, your team signs in to AirSign using your organisation's existing identity provider rather than yet another separate password. AirSign supports the standards IT teams already use - SAML and OIDC - so it slots into the login setup you have.

One secure login

People use the same credentials they already use for work, with your provider's security policies applied - including multi-factor authentication.

Central control

Access is governed by your identity provider, so onboarding and offboarding stay in one place - when someone leaves, removing their account removes their access.

Permission groups: who can see what

Logging in is only half the story. The other half is access control - making sure people see the documents and templates relevant to them, and not the ones that are not. AirSign's permission groups give you role-based access control built around a simple, safe principle: a member can act on something only if a group they belong to explicitly grants it. No grant means no access.

How it fits together

  • Off until you need it. Until you create your first permission group, nothing is restricted - small teams are not forced into configuration they do not want.
  • A sensible baseline. When you turn it on, a Default group is created and everyone is added to it, so nobody loses access overnight. Tighten the Default group to set the org-wide baseline.
  • Grant more where needed. Add people to additional groups to give them access above the baseline - for specific teams, clients or document types.
  • New joiners inherit the baseline. When someone accepts an invite, they automatically land in the Default group and see exactly what it grants - never everything by accident.

Access can be scoped using tags, so you can grant a group access to a particular set of sessions, templates or workflows rather than all of them. Admins always have full access, so there is no risk of locking yourself out.

Why it matters

  • Stronger security - company-managed logins, not shared or personal passwords
  • Less risk - people only see the documents they are meant to
  • Easier administration - onboarding and offboarding handled centrally
  • Audit-friendly - clear, enforced rules about who can access what

Scale signing across your whole organisation

SSO and permission groups make AirSign ready for teams that need control without complexity, while keeping all of AirSign's day-to-day simplicity and Australian data storage.

Rolling out AirSign to a larger team and want SSO set up? Get in touch and we will help you connect your identity provider.

Ready to roll AirSign out to your team?

Single sign-on and permission groups keep larger teams secure and organised. Start free, or talk to us about SSO setup.

Start Free TrialContact Us