You can configure a SAML authenticator with any identity provider running an SSO server that supports X.509 certificates. As a best practice, ensure users have email addresses as their usernames. You ...
Depending on your company’s policy, you may not be required to use two-factor authentication when logging in to Brightspot. Regardless of that policy, you can enable two-factor authentication for your...
If you lose the device with the authenticator app, you cannot log in to Brightspot. In addition, if the person who has (or stole) your device also knows your username and password, that person can log...
This topic covers the steps to log into Brightspot for the first time using two-factor authentication. To log in for the first time with two-factor authentication: If you don’t have an authenticator (...
You can enable or disable two-factor authentication for all users. To enable two-factor authentication: Click Menu icon > Admin > Sites & Settings > Sites > Global. Click Search icon, located to the l...
You can enable or disable two-factor authentication at the role level, which overrides any setting you made at the system level. To enable or disable two-factor authentication at the role level: Click...
If a user configured for two-factor authentication loses the authentication device, there is an immediate security risk: the person who found (or purloined) the device may be able access the user’s Br...
This topic covers how to log into Brightspot subsequently with two-factor authentication. To log into Brightspot subsequently with two-factor authentication: Log in to Brightspot with your username an...
You can review a user's SAML configuration, and enable or disable a user's ability to log in to Brightspot over SSO. To review a user's SAML configuration: Click Menu icon > Admin > Users & Roles. In ...
This section describes how to integrate Brightspot with single sign-on servers. As a best practice, ensure users have email addresses as their usernames. You can then configure different authenticator...