Verstanden
Um unsere Webseite für Sie optimal zu gestalten und fortlaufend verbessern zu können, verwenden wir Cookies. Wenn Sie fortfahren, stimmen Sie der Verwendung zu.
Klicken Sie hier für weitere Informationen
Deutsch Nederlands

Important: Transition to Central SSO Domains – Action Required by July 1, 2025

  1. Help Center
  2. WebUntis
  3. Administration
  4. WebUntis Release Notes

Articles in this section

As part of a technical update, the central login process for WebUntis is being modernized.
This change affects all schools that use SSO (Single Sign-On) for authentication.

The transition may require technical adjustments on your side and must be completed no later than July 1, 2025. After this date, only the new central SSO domains will remain functional.

ATTENTION
These adjustments are necessary to ensure the functionality of the login process.
Please make sure to schedule the transition in a timely manner.

Am I affected?

The transition affects all schools that use one of the following technologies for login:

  • OpenID Connect (OIDC)

  • Office365 (O365)

  • SAML

You can recognise whether your school uses one of these applications by the fact that settings are entered here or entries are made in the individual fields.

How to check your configuration:

In WebUntis, navigate to Administration > Integration
and check whether one of the three technologies is in use.

 

Screenshot_20250523-091220-20250523-101632.png

Attention
If the input fields are empty, you do not need to do anything else - you can stop reading here.
If there are entries, please continue reading!

Timeline

🟡 When can testing begin?

Testing of the new SSO integrations will be possible starting June 5, 2025, at 3:00 PM, with the WebUntis release 2025.13.0.

🟢 Parallel operation until the deadline

  • Period: June 5, 2025 – June 30, 2025

  • During this timeframe, both the old and the new SSO variants can be used simultaneously.

  • This allows for risk-free testing and a gradual transition.

Info

You are free to choose the time within this period that best suits your school for the switch.

🔴 Starting July 1, 2025

  • Only the new central domains will be valid.

Warning

Without the transition, your users may no longer be able to log in.

Technical Transition: What needs to be done?

1. Allow-list domains

If your school network uses a filter or firewall, please ensure that the following domains are allow-listed:

  • o365.webuntis.com

  • oidc.webuntis.com

  • saml.webuntis.com

Note: If needed, please contact your IT administration.

2. Implementation depending on SSO technology

🔹 Office365

  • No further action is required in this case slightly smiling face

🔹 OIDC

Austrian schools: If you see the text bip_ps_client in the Client ID field, there is nothing else to do here.

 

  • In your Identity Provider (IDP), you must register the domain oidc.webuntis.com as an Allowed Redirect Host:

  • In WebUntis, activate the option
    Use central redirect URI (Preview)

  • Click Save

  • Test the login
    If login issues occur after the change, you can simply deactivate the option again.
    Then please contact your regional WebUntis support.

 

image-20250523-090605.png

 

🔹 SAML

  1. Check Registration ID
    Go to Administration > Integration > SAML and check whether the Registration ID field is filled in.
    If it’s empty: Please contact your regional WebUntis support.
    This field only needs to be filled in if your school uses SAML, i.e. if settings are stored here.

  2. Import new metadata

    1. Click the button Download new Metadata XML

    2. Upload the XML file to your SAML IDP (e.g., Azure AD, Keycloak, etc.)

    3. The rest of the configuration in the IDP remains unchanged.

  3. Test login
    Click “Test Login” to verify the new SAML integration.

  4. Enable for all users
    Then enable the checkbox “Use new SAML-implementation” and save your changes.

 

image-20250523-091603.png

 

Support

  • If you have any questions, please contact your regional WebUntis support.
Back Next
Return to top

Related articles