login

Single Sign On (SSO)

Introduction

Openreach use single sign on to allow users to access the CP Portal and will allow users of Openreach portal to use their own company credentials to login, access multiple DUNS IDs using one login and improve security by removing access for leavers.

  • Getting access

    This section covers getting access and resolving common issues that a user may face when trying to access the Openreach CP portal.

    Question Answer
     How can I request access to the Openreach portal? You can request access to the Openreach portal using the available packages on My Access. You must know your DUNS ID and your role (Standard or CP Admin) before submitting your request. If you do not know, then speak to your manager or your CP Admin first.Following approval, you will be able to log into the Openreach CP Portal. You can view this video that shows you how to apply for access. We’ve also made a video that shows accessing Openreach CP portal for first time. Once you have logged in, you can apply for the tools and apps that you need.
     How do I manage multiple DUNS IDs using single sign on? You can apply to for any number of DUNS IDs using My Access. Once approved, you will be able to switch from one to another from your profile icon. You can view this video to learn how to do this. You can then apply for the tools and apps that you need for each DUNS ID.  
     What is a DUNS ID? The Dun & Bradstreet DUNS ID Number is a unique nine-digit identifier for businesses. You can learn more about this at the Dun & Bradstreet site.
  • Resolving access issues
    Question Answer
      I get a “User account "XXXXXX" from identity provider ‘https://xxxxxxxx” does not exist in tenant BT Plc" error

    You will get this message if you are a new user and try to login without applying for access first using My Access.

    This will also happen if the user’s email has changed, or your CP Admin removed your access during an access review.

    In the first instance, you can check your actives accesses using My Access. and then applying for access if you need to. Once approved you can log into the Openreach CP portal and then apply for the tools and apps that you need.

     
      I get a “Your account has been locked...” message This will happen if the last access package has been removed from your access. You can check your active accesses using My Access. If you do not have any active accesses to the Openreach CP portal and cannot apply for access, then contact the Openreach Service Desk who will be able to help you.
  • Managing access

    Access to the Openreach CP portal is managed by the CP Admin. This is a role that is in the CP organisation.

    Question Answer
      My organisation has said that I will be the CP Admin for them, how do I apply for access? You can request access to the Openreach portal using the available packages on My Access.. You must know your DUNS ID and choose the CP Admin access package.Following approval by another CP Admin, you will be able to log into the Openreach CP Portal and check that you have access to the CP Admin privileges.
    I’m a CP Admin for my organisation, what am I meant to do?              A CP Admin for the CP Portal is also an Admin for single sign on. From a SSO point of view, you will approve access for your colleagues, review their access and work with Openreach to manage your access requirements.As a CP Portal Admin, your responsibilities will have been covered when your organisation was established to do business with Openreach.You will receive email notification with steps to follow. you can also approve access using My Access
    A user has requested access. How do I approve this? You will receive email notification with steps to follow. you can also approve access using My Access. You can check out this video guide. We’ve also made a video that you can share with users to show them how to login for the first time.
    I would like to create access for users. How do I do this?
    		 As a CP Admin, once you have logged in, you can use the “Create user” option to add users.
    I would like to delete access for users. How do I do this?
    		 As a CP Admin, once you have logged in, you can search for a user and use the “Remove access”. If a user is deleted, then their access and their portal profile will be removed. If the user only had one access package their account will be locked. 
     I would like to add another organisation with a different email domain to get access to my organisation DUNS ID. Is this possible?

    Yes, this is possible, and it’s known as a “connected org” set up. What this means is that if your email domain is yourdomain.com and had access to DUNS ID 123456789, once a connected org is set up, then a user from theirdomain.com can also access 123456789.

    You can ask for a connected org to have either standard or CP admin access or both. If you request us to set up the connect org to include CP Admin, the CP Admins in theirdomain.com will have the same privileges and rights as you.

    If you would like a connected org set up, then contact our Openreach Service Desk with the following information:

    • Your CP Name and DUNS ID 
    • Domain you would like connected (e.g. theirdomain.com)
    • Access packages required (Standard, CP Admin or Both)
     I have been prompted to carry out an access review. What do I need to do? You will be promoted by Microsoft to review Openreach CP portal access for your users. Microsoft will make suggestions based on user activity. You can accept the suggestions or review each user.

@ © British Telecommunication plc 2025