Our authentication system is based on Keycloak. This allows us support many login options and integrate with multiple user directories in parallel according to your needs.

There are many login options available. Each instance is configured to accept one or more out of the following set of options.:

1. Single Sign-on (SSO) login (recommended, but requires integration)
   If your instance is set up with Single Sign-On (SSO), you will automatically be redirected to your company’s login page – no separate password required.

2. Login with email & password plus a second factor (2FA)
   Optionally add or enforce users to add a second factor, typically using a standard authenticator app like Google Authenticator or Microsoft Authenticator.

3. Login with email & one time login link sent via email
   Enter your email address. You receive a login link via Email that can be used for a couple of minutes and then expires.

4. Login with email & password
   Enter your email address and password. If you’ve forgotten your password, you can request a new one using the “Reset password” link. We don’t recommend this option for security reasons.

Scenarios where you redirect the login process via an IAM or unified login system like Okta, onelogin etc. is possible as well. The list is not necessarily comprehensive. If you have a specific login method in mind, consult the Keycloak documentation or reach out to us.