Guides
Log In
Guides

Configuring the Local Identity Provider

Suggest Edits

Prerequisites

  • Administrator privileges to configure IdP in Cyolo.

Configuration

  1. Log in to the Cyolo admin portal with your admin credentials.

  2. Navigate to the Integrations > Identity Providers page.

  3. Select local under Available identity providers and click the Edit icon. The local Identity provider is selected by default. The local provider can be edited and disabled and - if external identity providers are configured - it is also deletable.

    Note: If the local provider is deleted, access to the admin portal will be lost, if logged in using a local admin account.

  4. Choose a password policy - The default policy is auto-selected. Click the drop-down to select a custom password policy. For more information on creating custom password policies, refer to the section: How to Create a Password Policy.

  5. Allow users to reset their own password - This option is disabled by default. Enable it to allow users to reset their passwords.

  6. Accept legal documentation - Enable this option to display the corporate legal policy for accessing applications. Legal documentation is configured on the Configuration > Branding page under Legal terms and conditions. If not configured, this option is greyed out. For more information on creating branding, refer to the section: Branding.

  7. MFA provider - Click the drop-down to select an MFA provider other than Cyolo, if available. By default, Cyolo is selected as the MFA provider.

  8. Available MFA methods - Enable the checkbox alongside each method below to enable the methods of MFA available to the user when logging in.
    Provide email address - Enable this checkbox for Cyolo to send a TOTP code to the email address configured in the profile of the user. This option is disabled by default.
    Scan QR code - This option displays a QR code on the login screen of the user. The user can either scan the code using an authenticator or manually add it. This option is enabled by default.
    Provide phone number - Enable this checkbox for Cyolo to send a TOTP code via SMS to the phone number configured in the profile of the user. This option is enabled by default.

  9. Editing sign-in methods - The Allow users change their sign-in methods option will allow the user to add or delete the sign-in methods on the Sign-in Methods section of the user’s profile on the Cyolo Application Portal. This option is disabled by default.

  10. Additional settings: Users can change their personal details - Enable this option to allow users to change their personal information on the Personal Info page of the user’s profile on the Cyolo Application Portal. This option is disabled by default.

Updated 3 days ago