Accessing authentication settings
Authentication settings allow you to manage how users of your organization are able to log in to Zenkit. You can enable or disable login through third parties or setup Security Assertion Markup Language (SAML)-based single sign-on (SSO).
There are three different types of authentication that you can choose to allow organization users to use to log in.
The simplest form of authentication Zenkit allows is a password login. Passwords must conform to the following requirements:
- At least 8 characters long
- Must contain at least one number
- Cannot be blacklisted or on a list of common or leaked passwords
To disable the login by password option, toggle the switch to the off position.
Third Party Logins
The third-party login option allows your users to login using their Google, Microsoft, or Facebook accounts. You can toggle each of these on or off separately.
Single Sign-On (SSO)
You can enable single sign-on using SAML (Security Assertion Markup Language) protocol.
To enable SSO, you need to add Zenkit's Entity ID, Assertion Consumer Service (ACS) URL, and Zenkit Login URL to your identity provider.
You can find these already populated in the SSO settings, and simply copy and paste them directly into the fields provided in your identity provider (IdP). Please ensure that you don't modify them in any way as you copy them across, as this information is needed by your identity provider to identify and authenticate Zenkit.
Next, you need to fill in the details provided by your IdP: the SSO URL, Identity Provider Issuer, and X.509 Certificate.
You can find this information in the SAML-based SSO configuration section of your IdP. For more information on this for your IdP, please see our article on "Setting up custom SAML in Azure".
Learn more about setting up SSO in these common IdPs: