Set default and fallback authentication providers to improve security for Cirro accounts, as well as adding default directory services such as LDAP, Azure or Active Directory.

Before you start

How does it work?

We’ve created a demonstration of how Cirro authentication works.

View Authentication Providers

  • Choose Users & Roles then Authentication Settings.
Column Description
Name User supplied name for authentication provider
Type Type of provider, currently chosen from Saaspass 2FA or Push, and Duo

Add Duo

Add Saaspass

Edit a provider

  • Choose Users & Roles then Authentication Settings.

  • Click Edit for the provider.

  • Enter the values.

  • Click Update Provider.

Delete a provider

  • Choose Users & Roles then Authentication Settings.

  • Click Delete for the provider.

  • Click Yes on the confirmation.

Set default authentication provider

  • Choose Users & Roles then Authentication Settings.

  • Choose the authentication provider from the drop-down field.

  • Click Update.

Cirro Time-based One-time Password Cache Time (seconds)

You can set a shorter or longer timed Cirro Timed One Time Password (TOTP) expiry for tools which make multiple connections for a single login.

  • The default is 900 seconds (or 15 minutes).

  • Each new connection resets the clock.

Set TOTP Cache Time

Allow a shorter or longer time to use the same Timed One-Time Password to login.

  • Choose Users & Roles then Authentication Settings.

  • Enter the value in seconds then click Update.

See also