Skip to content

Email sign-in accounts and SSO

Venafi Control Plane administrators can selectively manage which users are allowed to use the email sign-in option for logging in. When enabled, you just use your email address with a Control Plane password.

Accounts that have email sign-in enabled can also sign in using SSO, assuming SSO is enabled and configured on your Control Plane account.

If you're a Venafi Control Plane administrator, you can view and edit user accounts and either enable or disable the email sign-in option.

IMPORTANT

The primary purpose for allowing email sign-in is for situations in which your SSO goes offline—either intentionally or due to an outage of your SSO service—and an alternate authentication method is required.

As a matter of tightening security, using an email sign-in to authenticate with TLS Protect Cloud should be reserved for authorized administrators only in cases where SSO isn't available.

Where can I find this setting?

To enable or disable email sign-in on a user account, go to Settings > Users, select a user, and then select or clear Enable local sign-in.

Where to find the email sign-in option