Security
Configure SSO and 2FA options for your organization.
Security Options
Enhance your organization’s security with Single Sign-On (SSO) and Two-Factor Authentication (2FA) settings through the Dashboard. This guide explains these features and provides setup instructions.
Single Sign-On (SSO)
SSO enables users to access multiple platforms with a single set of credentials, centralizing account control for enhanced security. uses SAML 2.0, ensuring secure data exchange between your Identity Provider (IdP) and our platform.
To activate SSO, an Organization Administrator must verify IdP credentials, add a domain, and confirm its ownership within givetly. For setup, visit our SSO guide.
Note: Only users with verified domain email addresses can log in using SSO.
SSO Session Duration
Each SSO session remains active for 12 hours, after which users are logged out. Verified domains are rechecked weekly; missing DNS settings update the domain’s status to Not Verified, logging out users logged in via SSO.
Two-Factor Authentication (2FA)
2FA adds an additional security layer, requiring a second verification form such as an SMS code or code from an authenticator app. supports 2FA through both methods.
Enabling 2FA for All Users
Organization Administrators can enforce 2FA for all users after enabling it for their account. Access this option from the Security section in account settings. Mandatory 2FA will log out users without it set up, requiring them to complete the setup to re-login.
Resetting 2FA
Admins can reset 2FA by selecting the Reset 2FA option for users on the Team page. If 2FA is required, users are logged out and must re-enable 2FA to login again.
2FA and SSO Integration
For accounts with SSO Required:
- 2FA settings marked as Not applicable.
- Switching SSO mode reinstates previous 2FA status.
- 2FA isn’t prompted at login if SSO is required.
For accounts with SSO Optional:
- 2FA is prompted if enabled for the user or required for the account.
- Organization members have the discretion to enable 2FA, and admins can mandate it for all users.
Ensure your organization’s security with these settings, protecting both user accounts and supporter data efficiently.