Issue
Can we set SSO at the user level or have one break-glass account which can be put into an SSO bypass group? For instance in an emergency, where we need to be sure we can access Red Canary if SSO is down or unavailable?
Environment
Red Canary with SSO authentication
Resolution
There is not a way to disable SSO for only one account, and no bypass group available. However, it is possible for users to login with username and password via local accounts as needed, even with SSO enabled and active as an authentication method.
Only an Admin can make the below changes.
To allow local accounts:
- Log in to Red Canary
- Click your avatar at top-right, then under Users & Roles, click Single Sign-On
- Under Authentication Methods, uncheck "Disable username / password login and require login via Single Sign On"
- Click Save configuration.
To entirely disable SSO:
- Log in to Red Canary
- Click your avatar at top-right, then under Users & Roles, click Single Sign-On
- Under Authentication Methods, uncheck "This SSO configuration should be active".
- Click Save configuration.
This will stop the SSO process and allow only local accounts to log in to Red Canary for your company.
Please see Setting up single sign-on for more information.
If a situation arises where you are unable to access your account, please contact our support team via email. If it is an emergency, please call our 24/7 emergency voicemail line and we will do everything we can to assist your team.
Comments
0 comments
Please sign in to leave a comment.