Email sign-in accounts and SSO¶
Venafi Control Plane administrators can selectively manage which users are allowed to use the email sign-in option for logging in. When enabled, you just use your email address with a Control Plane password.
Accounts that have email sign-in enabled can also sign in using SSO, assuming SSO is enabled and configured on your Control Plane account.
If you're a Venafi Control Plane administrator, you can view and edit user accounts and either enable or disable the email sign-in option.
IMPORTANT
The primary purpose for allowing email sign-in is for situations in which your SSO goes offline—either intentionally or due to an outage of your SSO service—and an alternate authentication method is required.
As a matter of tightening security, using an email sign-in to authenticate with TLS Protect Cloud should be reserved for authorized administrators only in cases where SSO isn't available.
Where can I find this setting?¶
To enable or disable email sign-in on a user account, go to Settings > Users, select a user, and then select or clear Enable local sign-in.