Configuring authentication

Authentication settings aren't available if you're working in a child account within a pan-tenant environment. These settings are managed from the parent account.

Under Login & Security in Settings > Account, you can control how users authenticate to your Absolute account. Specifically, you can configure settings for the following features:

Feature	Description
Two-Factor Authentication	Add an extra layer of security to your Absolute account by enabling Two-Factor Authentication (2FA). When 2FA is enabled, all users need to enter a six digit verification code in addition to a username and password when they log in to the Secure Endpoint Console. Users can generate verification codes by installing and configuring a supported 2FA app on their smartphone. Learn more
Single Sign-On (SSO)	Single sign-on (SSO) is an authentication process whereby users provide a single set of credentials to access multiple web applications during a user session. After users are authenticated, they can switch between applications without re-entering their credentials. If your organization uses a supported SAML 2.0 identity provider (IdP) for user authentication, you can enable single sign-on to the Secure Endpoint Console. Learn more After SSO is enabled, you can set up SCIM integration to automatically sync user information from your IdP. Learn more

Feature

Description

Two-Factor Authentication

Add an extra layer of security to your Absolute account by enabling Two-Factor Authentication (2FA).

When 2FA is enabled, all users need to enter a six digit verification code in addition to a username and password when they log in to the Secure Endpoint Console. Users can generate verification codes by installing and configuring a supported 2FA app on their smartphone.

Learn more

Single Sign-On (SSO)

Single sign-on (SSO) is an authentication process whereby users provide a single set of credentials to access multiple web applications during a user session. After users are authenticated, they can switch between applications without re-entering their credentials.

If your organization uses a supported SAML 2.0 identity provider (IdP) for user authentication, you can enable single sign-on to the Secure Endpoint Console.

Learn more

After SSO is enabled, you can set up SCIM integration to automatically sync user information from your IdP.

Learn more

To access authentication settings:

Log in to the Secure Endpoint Console as a user with View or Manage permissions for Authentication. The System Administrator role is the only Default role with these permissions.
On the navigation bar, click Settings > Account.

Authentication settings are located under Login & Security.