Security Policies: Password and Session Management policies, SSO Authentication
From the Company page => Security Policies section, a Company Admin can set Password Policies, Session Policies and configure Single Sign On (SSO) Authentication for users within their company.
- In Password Policies, you can specify the number of days in which you want a user's password to expire. You can also Enforce Password History rules, e.g, users cannot use the last <#> passwords.
- In Session Policies, you can select the maximum number of invalid login attempts allowed and inactivity logout time.
- In the Authentication section, you can select from the following authentication choices for employees in your company:
- Enable Password Login
- This is the default selection. User is prompted to create their own password during the sign up process.
- Enable Google SSO
- Check this option if your company uses Google as the SSO authentication provider.
- If third-party cookies are blocked by your browser, SSO will not work. Make sure that your browser allows third party cookies.
- You can check the Allow Password Login to allow both password login and login with Google SSO.
- Enable Microsoft SSO
- Check this option if your company uses Microsoft Azure as the SSO authentication provider.
- Click Get Tenant ID to get the ID that needs to be entered in the Tenant ID field. This action will prompt you to enter your Azure SSO credentials.
- You can check the Allow Password Login to allow both password login and login with Microsoft SSO.
- Enable SAML/Open ID Connect
- Enter Your Provider ID or contact us if you do not have a Provider ID. Provider ID is a URL that uniquely identifies your SAML identity provider. SAML assertions sent to WorkSpan must match this value exactly in the
<saml:Issuer>
attribute of SAML assertions. - You can check the Allow Password Login below this option to also allow password login and login with SAML/OpenID Connect.
- You can test your connection by clicking the Test Connection link.
- Enter Your Provider ID or contact us if you do not have a Provider ID. Provider ID is a URL that uniquely identifies your SAML identity provider. SAML assertions sent to WorkSpan must match this value exactly in the
- Enable Password Login
Comments
Please sign in to leave a comment.