Hi Chris,
I've reached out to our support team for some assistance with this one and there are some limitations with SSO implementation currently. If the customers were created using the customer AD pass through, it is currently not possible for them to login from outside the network with those credentials. Once they are created that way we pass the authentication off to IIS, so a VPN would be required.
- You could delete them all and recreate the accounts by importing the list of customers rather then use IIS. They could still log in via the IIS pass through, but if the accounts are created outside of automatically, then they can log in just at the portal as well.
- The second option is as I mentioned already, have them connect via a VPN or login into a local computer using remote access (GoToMyPC etc)
