Overview: In today's digital landscape, secure and flexible authentication methods are essential for safeguarding user data and ensuring seamless access to services. At Active, we prioritise security and user convenience by offering multiple login options through our proprietary identity service.
Please refer to the Glossary for definitions of key terms used in this article.
Authentication methods available
There are various authentication methods available with Active products:
Standard login with Two-Factor Authentication (2FA)
Single Sign-On (SSO) options
Third-Party SSO Support - Practice Protect
Note: The Active platform requires user accounts to be created or sync'd prior to a user being authenticated.
1. Standard login with Two-Factor Authentication (2FA)
The traditional login method provides a straightforward and reliable way for users to access their accounts, combined with an added layer of security through Two-Factor Authentication (2FA). This involves entering a unique username and secure password, followed by an additional verification step using an authentication app, with SMS as an alternative method.
Key features
Ease of use: Simple and familiar process for the initial login.
Increased security: Adds an extra layer of protection against unauthorised access.
Versatility: Supports two-factor methods via authentication apps, with SMS as an alternative method.β
2. Single Sign-On (SSO) options
To streamline the login process and enhance security for our users, Active support multiple Single Sign-On (SSO) options. This allows users to access Active products using their existing credentials from trusted identity providers, reducing the need to remember multiple usernames and passwords.
Microsoft Single Sign-On (SSO)
Active's integration with Microsoft allows users within organisations that use Microsoft services to access our products using their existing Microsoft credentials.
Key features
Convenience: One-click access using Microsoft credentials.
Integration: Seamlessly integrates with Azure Active Directory.
Efficiency: Reduces password fatigue and improves user productivity.
Requirements: Consenting to our Microsoft Entra Enterprise Application.
Login Restrictions: We can, upon request, enforce login restrictions to ensure that only users from a specific domain can access our products. In doing so, normal login will be disabled, enhancing security by limiting access to verified users within your organisation and providing an additional layer of control over who can sign in and interact with your services.
See the support article for more information: Setting up SSO with Microsoft accounts.
Security Assertion Markup Language (SAML)
For organisations using SAML-based identity providers, we offer support for SAML, enabling seamless and secure access to our products.
Key features
Enterprise-ready: Ideal for large organisations with complex identity management needs.
Interoperability: Compatible with many enterprise identity providers.
Security: Provides robust security features and centralised authentication.
Requirements: Please contact us for requirements and to arrange setup.
We still enforce 2FA as an additional step to all SSO connections. We provide an option to remember your 2FA for 30 days as long as your device does not change.
3. Third-party SSO support - Practice Protect
In addition to our SSO Options, we recognise the need for flexibility by supporting various third-party SSO providers like Practice Protect. This option is ideal for organisations that already utilise specialised SSO solutions for managing user access across multiple applications.
OpenID Connect with OAuth 2.0
We support OpenID Connect with OAuth 2.0, a modern and flexible authentication protocol that enables secure sign-ins through various identity providers.
Key features
Modern protocol: Utilises the latest authentication standards.
Interoperability: Works with a wide range of identity providers.
Requirements: ClientId, Client Secret, Metadata URL and an email domain are required for setup.
Flexibility: Supports a range of SSO providers.
Centralised Management: Simplifies user management through a single SSO provider.
Security: Leverages the security measures of trusted SSO vendors.
See the support article for more information: Enable SSO for Business Fitness (HowNow) β Practice Protect Support
Conclusion
Choosing the right authentication method is crucial for balancing security and user experience. At Active, we offer a variety of login options to cater to different needs, from standard login with built-in 2FA to SSO with Microsoft and other third-party providers. This ensures that our users can access their accounts securely and conveniently, while organisations can manage user access efficiently.
For more information or assistance with setting up your preferred authentication method, please contact Active's support team.