Skip to main content
Exploring Authentication Options for Our Products

In today's digital landscape, secure and flexible authentication methods are essential for safeguarding user data and ensuring seamless...

Updated over a month ago

In today's digital landscape, secure and flexible authentication methods are essential for safeguarding user data and ensuring seamless access to services. At Business Fitness, we prioritise security and user convenience by offering multiple login options through our proprietary identity service. Here’s a detailed look at the authentication methods available for our products:

PLEASE NOTE: Our platform requires user accounts to be created or sync'd prior to a user being authenticated.

1. Standard Login with Two-Factor Authentication (2FA)

Our traditional login method provides a straightforward and reliable way for users to access their accounts, combined with an added layer of security through Two-Factor Authentication (2FA). This involves entering a unique username and secure password, followed by an additional verification step using an authentication app, with SMS as an alternative method.

Key Features:

  • Ease of Use: Simple and familiar process for the initial login.

  • Increased Security: Adds an extra layer of protection against unauthorized access.

  • Versatility: Supports two-factor methods via authentication apps, with SMS as an alternative method.

2. Single Sign-On (SSO) Options

To streamline the login process and enhance security for our users, we support multiple Single Sign-On (SSO) options. These allow users to access our products using their existing credentials from trusted identity providers, reducing the need to remember multiple usernames and passwords.

Microsoft Single Sign-On (SSO)

Our integration with Microsoft allows users within organizations that use Microsoft services to access our products using their existing Microsoft credentials.

Key Features:

  • Convenience: One-click access using Microsoft credentials.

  • Integration: Seamlessly integrates with Azure Active Directory.

  • Efficiency: Reduces password fatigue and improves user productivity.

  • Requirements: Consenting to our Microsoft Entra Enterprise Application.

  • Login Restrictions: We can, upon request, enforce login restrictions to ensure that only users from a specific domain can access our products. In doing so, normal login will be disabled, enhancing security by limiting access to verified users within your organization and providing an additional layer of control over who can sign in and interact with your services.

Security Assertion Markup Language (SAML)

For organizations using SAML-based identity providers, we offer support for SAML, enabling seamless and secure access to our products.

Key Features:

  • Enterprise-Ready: Ideal for large organizations with complex identity management needs.

  • Interoperability: Compatible with many enterprise identity providers.

  • Security: Provides robust security features and centralized authentication.

  • Requirements: Please contact us for requirements and to arrange setup.

We still enforce 2FA as an additional step to all SSO connections. We provide an option to remember your 2FA for 30 days as long as your device does not change.

3. Third-Party SSO Support - Practice Protect

In addition to our SSO Options, we recognize the need for flexibility by supporting various third-party SSO providers like Practice Protect. This option is ideal for organizations that already utilize specialized SSO solutions for managing user access across multiple applications.

OpenID Connect with OAuth 2.0

We support OpenID Connect with OAuth 2.0, a modern and flexible authentication protocol that enables secure sign-ins through various identity providers.

Key Features:

  • Modern Protocol: Utilizes the latest authentication standards.

  • Interoperability: Works with a wide range of identity providers.

  • Requirements: ClientId, Client Secret, Metadata URL and an email domain are required for setup.

  • Flexibility: Supports a range of SSO providers.

  • Centralized Management: Simplifies user management through a single SSO provider.

  • Security: Leverages the security measures of trusted SSO vendors.

Conclusion

Choosing the right authentication method is crucial for balancing security and user experience. At Business Fitness, we offer a variety of login options to cater to different needs, from standard login with built-in 2FA to SSO with Microsoft and other third-party providers. This ensures that our users can access their accounts securely and conveniently, while organizations can manage user access efficiently.

For more information or assistance with setting up your preferred authentication method, please contact our support team.

Did this answer your question?