Articles in this section

Global Admin: Identity Provider (IdP) and Multi-factor Authentication (MFA)

Avatar
Moriah Waiters
Updated
Follow

Jump to Section:

 

Overview

As of March 31, 2025, Global Admin securely protects stored data via two industry-standard service protocols: the Personify Identity Provider (IdP) and Multi-Factor Authentication (MFA).

GA_Landing.png

IdP and MFA comply with current security standards, prevent sensitive user data breaches, and ensure that personally identifiable information (PII) remains securely protected.
 

Personify IdP

The Personify IdP is a completely multi-tenant SaaS application solution with one single sign-on application and database servicing for all clients. Our solution is up-to-date on modern technology, utilizing Oauth 2.0 and OpenID Connect to provide seamless login across your Global Admin backend database and the event-specific front-facing Event Portal sites.

GA_LoginIDP.png

Show management uses one unique e-mail address and password per user account, also known as IdP-based credentials, to access both systems. It also safeguards sensitive information by employing MFA to offer an extra layer of protection for administrator access to the database.
 
MFA will be enabled & required for all GA accounts on March 31, 2025.
 

Multi-Factor Authentication

Multi-factor authentication is a two-step security measure that requires users to confirm their identity by providing two types of identification. Essentially, it works as a dual method for ensuring it's you by requiring two verifications of identity before successful login, including:

  1. Something you know (e.g., your password).
  2. Something you have (e.g., a code sent to your e-mail).
 
GA_MFA.png
Global Admin's MFA does not require users to download a unique token generator or an app; instead, it sends an authentication code to the e-mail address associated with your account to confirm your identity. 
 
Other advantages of MFA include:

  • Unique and time-sensitive passcodes: MFA uses temporary, unique passcodes that expire quickly, reducing the risk of unauthorized reuse.
  • Ease of use: MFA methods, such as codes sent by e-mail, are convenient and straightforward to manage.
  • Prevention of unauthorized access: Users cannot log in without the second factor, such as a code sent to their e-mail.

 

MFA does not affect non-admin users or GA contacts with Event Portal user accounts.

 

Important Notes

Global Admin users must now verify the e-mail address associated with the user account upon enablement and first-time login.

Once verified, upon each login, users receive a one-time verification code via e-mail, which admins must enter to complete the login process.

Tip: Select "Remember this machine" to minimize repeated prompts for up to 30 days. 

 

Troubleshooting MFA

If you have trouble receiving verification codes through e-mail, try these steps:

  • Try re-sending the code.
  • Check your e-mail's junk or spam folders.
  • Ensure you're not on a public network (e.g., at work or school), as your IT department may be blocking the e-mail.

Please contact our Support team or your Project Manager if you have general questions or need assistance with setup or troubleshooting. 

Related articles

Powered by Zendesk