Enterprise Authentication

This page describes the enterprise authentication login feature available in the Broadsign Platform.

Enterprise Authentication

Large network owners use Identity Providers (IdPs) like Active Directory or Okta to manage user credentials centrally. Integrating enterprise authentication into the Broadsign Platform allows the delegation of Broadsign authentication to these third-party IdPs.

Enterprise authentication enables users to log in to the Broadsign Platform using their Identity Provider credentials. This method provides a more secure environment and better control over user authentication and Platform access.

Benefits of enterprise authentication include:

  • Strengthened IT security and control
  • Reduced password fatigue
  • Improved user experience
  • Simplified account management

To learn more about enterprise Identity Providers supported by Auth0, refer to the Enterprise Identity Providers section of the Auth0 documentation.

Note: Auth0 cannot detect when a user in the Active Directory (AD) and LDAP Identity Providers is disabled. Therefore, Auth0 does not support auto disconnecting the user for these Identity Providers. However, the auto disconnection feature is supported for other Identity Providers such as Active Directory Federated Server (ADFS) and Azure AD.

The following browsers are supported for enterprise authentication:

Note: We recommend that you use the latest version of your preferred browser.

To use enterprise authentication, the Broadsign Platform relies on the Auth0 authentication and authorization management platform. For more information, see auth0.com.

Prerequisites

To request enterprise authentication access to Broadsign Services, include the email used to create the account in your request. Broadsign will then perform the following actions:

  • Create an account for your domain and grant you delegate administrator access of your Auth0 application.
  • Create a tenant (sub-tenant of Broadsign).
  • Set up your enterprise connections to allow your users to log in with their Identity Provider credentials, such as Active Directory.
  • Ensure that the user emails in the Broadsign Platform match the accounts created in Auth0.

Warning: Enabling enterprise authentication disables all other forms of login.

To log in with Enterprise authentication:

  1. To access the log in page for Broadsign, go here.

    2. It is possible that a custom URL has been created. In that case, ask your domain Administrator about the proper URL to use.

  2. Enter your email address, then click Continue.

  3. Enter your password, then click Log In.

    4. The Broadsign Platform opens an external authentication login page to authenticate the user against their connector.

    Note: The user cannot log in unless they have a valid Broadsign Platform email address in the domain where enterprise authentication is enabled. If the user enters a wrong email address or an address that does not exist in the domain, then the Broadsign Platform displays an error to inform the user that the email entered is not valid.

  4. If authenticated, enter the corresponding password.

You can access the logs related to your domain in Auth0:

  1. Access the Auth0 web site at auth0.com.
  2. Click the Sign In button and use the information provided by Broadsign Services.
  3. Navigate to the Logs menu on the left.

    4. You can see the log data of both actions taken in the dashboard by the administrators, as well as authentications made by your users.