Cloudwork.ID Settings
Contents
Cloudwork.ID Settings
Located in the Cloudwork Dashboard>Settings>CloudworkID Settings
Look and Feel
https://wiki.studentnet.net/index.php/CloudworkID_themes
Features
| Field Name | Description |
|---|---|
| Cloudwork.ID Homepage | Configures whether users will be able to see the list of SSO Services available to them or will users only be able to their own account settings |
| Passwords | Configure whether users will be allowed to update their password |
| Recovery Information | Configure whether users will be allowed to update their Recovery Information |
| Multifactor Authentication | Configure whether users can add or delete MFA options to their account |
| Disable Multifactor | Configure whether users can disable MFA from their account, users can remove MFA options but must have at least one MFA option available if this option is active |
| Users must enable MFA | Configure whether users must have MFA enabled before accessing any service |
| Allow Passwordless Login | Configure whether users can set Passkey as an alternate login |
| Let Users Configure Passwordless Login without enforcing MFA | Control whether users need to have MFA before setting up a Passkey |
| Enable Trusted Devices | As a feature of Multifactor, Users have the option when logging in to select I trust this device, don't ask again. This means for the next 30 days the user will not have to use a code for MFA. |
| Multifactor Authentication Whitelist | Enter IP Addresses or Address Ranges, so users logging in from specified IP Address/Range will not be prompted for MFA |
| Multifactor Push Alert Actions | This option is specific to the CloudworkID Authenticator App both Custom and normal, control whether users can accept MFA prompts the notifications icon or need to launch the CloudworkID Authenticator App to accept MFA requests |
| Multifactor Methods | Control whether users can use SMS as an MFA option or not, this option is so school do not get charged extra for SMS cost listed in the this documentation |
| Reject Compromised Passwords | Control whether when a user updates their password, whether to check password against the dark web via the haveibeenpwned facility. More information located here |
| Compromised Password Threshold | If Reject Compromised Passwords is enabled, a limit can be set for how many times the password has been seen before the password a user sets gets rejected |
| Session Length | Control how long a user can stay logged in before being asked to re-authenticate |
Password Settings
Account Recovery Settings
https://wiki.studentnet.net/index.php/Password_Recovery
