There are 3 ways users can sign in to ZOKRI
- Email / Password
- Sign in with Google
- Sign in with Microsoft (Azure AD)
- Sign in with OKTA
The default option is Email / Password but you can change this in the Settings -> Single Sign On page
If you change the options
- All new users will use the new option when signing in for the first time
- All current users will not be affected and will login using their current credentials
You can have more than 1 option enabled so users can still use Email / Password if they do not have a Google account.
Password Configuration
Various options include
- Changing the minimum length required
- Alphanumeric requires mixture of letters and numbers
- Exclude common passwords stops users entering common & simple passwords
NOTE When resetting passwords, users cannot reuse any of their previous 4 passwords
Microsoft Azure App & Tenants
You can find the ZOKRI App in the Azure Marketplace
You can optionally add the tenant GUIDs for any domains you want to allow - you can obtain the value from your Azure AD Domain settings.
NOTE Microsoft SSO only works for Azure AD not the consumer accounts
Whitelists
Whitelist allow you to select which domains can be used for emails and which sign in option is available when inviting a user. If the whitelist is left empty then any email can be used.
Example
You want all your employees to sign in via google with their company email, but also allow some external contractors to log in using email / password. Then the configuration should be