You can configure a SAML authenticator with any identity provider running an SSO server that supports X.509 certificates. As a best practice, ensure users have email addresses as their usernames. You ...
You can enable or disable two-factor authentication at the role level, which overrides any setting you made at the system level. To enable or disable two-factor authentication at the role level: Click...
This topic covers how to log into Brightspot subsequently with two-factor authentication. To log into Brightspot subsequently with two-factor authentication: Log in to Brightspot with your username an...
If a user configured for two-factor authentication loses the authentication device, there is an immediate security risk: the person who found (or purloined) the device may be able access the user’s Br...
Depending on your company’s policy, you may not be required to use two-factor authentication when logging in to Brightspot. Regardless of that policy, you can enable two-factor authentication for your...
If you lose the device with the authenticator app, you cannot log in to Brightspot. In addition, if the person who has (or stole) your device also knows your username and password, that person can log...
You can enable or disable two-factor authentication for all users. To enable two-factor authentication: Click Menu icon > Admin > Sites & Settings > Sites > Global. Click Search icon, located to the l...
This topic covers the steps to log into Brightspot for the first time using two-factor authentication. To log in for the first time with two-factor authentication: If you don’t have an authenticator (...
You can review a user's SAML configuration, and enable or disable a user's ability to log in to Brightspot over SSO. To review a user's SAML configuration: Click Menu icon > Admin > Users & Roles. In ...
In most scenarios, single sign-on servers associate users with groups. Similarly, most publishers associate Brightspot users with roles. As a best practice, you should associate the SSO groups with th...