Security Settings is the second tab in the Organization Settings. You can return to this tab at any time by clicking on Settings in the left navigations, then on Security at the top of the screen.
This tab allows Organization Administrators to set security-related settings for the Organization, such as enforcing App Security, requiring Two-Factor Authentication for login to OnBoard, and enabling Single Sign-On for your users.
Enforce App Security
Enable this option to ensure that everyone who logs into OnBoard from their mobile applications (Android, iOS, Windows, etc.) will be required to set and use an additional security method code to authenticate. When enabled, users can choose either a 4-digit PIN code or any form of biometric security (TouchID/FaceID) as their secondary method of security, but that method will need to be used every time when logging into OnBoard from their mobile device. Learn more about App Security in this article.
Use the “Add Exceptions for App Security” button (visible after enabling the Enforce App Security toggle, to allow users to be exceptions to this enforcement rule.
Users who are added to the Exceptions list will not be required to use Mobile Security on their devices.
Require Two-Factor Authentication
When this configuration option is enabled, all users will be required to authenticate by using a secondary code that is delivered by either email or SMS text message, in addition to their normal username and password combination. This will be required on both website logins as well as mobile application logins. Exceptions to this enforcement can be enabled here as well, just like above, by using the “Add Exceptions for Two-Factor Authentication” button (visible after enabling the toggle to Require Two-Factor Authentication).
Users added to the Exceptions list will not be required to authenticate with both methods.
Enable SSO (Single Sign-On)
Enable and enforce SSO for your organization users to access this organization through their pre-existing SSO credentials. Learn more about Single Sign-On in our SSO article section.