Skip to main content
Magic links expire after a short period. If your link is no longer valid, go to the Petra sign-in page, enter your email address, and a new link will be sent to your inbox.
If you received an invitation to join a Petra organization but never accepted it, the link may have expired. Ask the Admin who invited you to resend the invitation:
  1. The Admin goes to Settings > Access.
  2. They find your email in the members list.
  3. They click the three-dot Actions menu on your row and select Resend Invitation.
You will receive a new invitation email with a fresh link.

Sign in with Microsoft

The Continue with Microsoft button on the sign-in page uses Microsoft OAuth to verify your identity. It works out of the box with no additional setup. To use it, your email must already be invited to a Petra organization. Microsoft OAuth does not create new Petra accounts on its own.

”Need admin approval” when signing in with Microsoft

If you see a “Need admin approval” screen when clicking Continue with Microsoft, your Microsoft 365 tenant is configured to require admin approval before users can sign in to third-party apps. Petra only requests basic sign-in permissions (User.Read), so no elevated access is involved. To resolve this, a Global Admin in your Microsoft 365 tenant needs to click Continue with Microsoft on the Petra sign-in page and sign in one time. This grants consent for the Petra app in your tenant. After that, all users in your organization can sign in with Microsoft without seeing the approval screen again.

Do I need to set a password?

No. Petra’s default sign-in method is Email Magic Links, which is passwordless. You can continue signing in with magic links without ever setting a password. If your organization has password authentication enabled, you can optionally set one, but it is not required.

Do I need SSO to use “Sign in with Microsoft”?

No. SSO and Microsoft OAuth are different features.
  • Microsoft OAuth is built into Petra’s sign-in page and is free. It uses your Microsoft account to verify your identity. No configuration is needed.
  • SSO (SAML/OIDC) is a paid add-on that connects Petra to your organization’s identity provider (e.g., Entra ID, Okta, Google Workspace). It gives admins centralized control over who can access Petra and supports features like JIT provisioning. Contact the Petra team for pricing.
You do not need SSO configured to sign in with Microsoft. For more on SSO, see Authentication > Single Sign-On.