Manage authentication

User requirements

To manage authentication methods and options for your organization, you must be assigned the Admin account type.

Authentication methods

Password
Sigma prompts new organization members to create a unique password for their Sigma account and login that is at least 8 characters long and not a commonly-used or similar password. To change authentication from password to SSO or OAuth, user emails must map exactly in order for the user to maintain their account. 
SAML
Sigma authenticates organization member accounts through the Single Sign On (SSO) protocol you provide. See SSO with SAML.
SAML or Password
Organization members authenticate with either SSO or a unique password.
OAuth
Sigma authenticates organization member accounts through OAuth Single Sign On (SSO). This option supports OAuth with Snowflake.
OAuth or Password
Sigma authenticates organization member accounts through OAuth Single SignOn (SSO) or a unique password. This option supports OAuth with Snowflake.

Manage authentication method and options 

  1. Open your Admin Portal by selecting Administration in the user menu at the top right of your screen.

  2. Select the Authentication page from the left hand panel.

  3. Click the Edit button under Authentication Method & Options.

  4. Select an Authentication Method from the dropdown menu.

  5. [optional] To enable guest user accounts, click the toggle next to Allow Guest Access. See Guest User Accounts.

  6. [optional] Set the Session Length to customize how frequently users will be prompted to re-authenticate. This setting only applies to users logging in with SAML or a password.

  7. [optional] To require two-factor authentication, click the toggle next to 2-Factor Authentication Required. See Two-Factor Email Authentication.

  8. After completing the form, click Save.

Admin-initiated password reset

  1. In the Admin Portal, click the People tab.

  2. Locate the user on the Members tab.
    If the list is long, you can use the search bar to search by name or email.

  3. Click on the more menu ••• and select Reset user password from the menu.
    This action sends a reset password email to the user.

    company apps

Bulk password reset

Admins can initiate a password reset for multiple users. When an admin initiates a password reset, the end user receives an email that informs them that an admin has requested this. 

  1. In the Admin Portal, click the People tab.

  2. For each selected user, check the box to the left of their name.

  3. Click Reset password in the toolbar above.

    company apps

  4. Review your selection and click Confirm

    company apps

  5. The selected users receive an email informing them that the org admin has requested that they reset their password. 

Company domain signup

When you use the Password authentication method, you can also select if you would like to add any domains to the allowlist. By default, new users can only sign up through an invite.

Adding your company's email domain allows anyone with a company email to create a Sigma account without a personalized invite.

Sigma prompts new users to enter their email from a domain on the allowlist. After confirming the email, the user can register as a Sigma user.