Skip to main content

Authentication Methods

The Authentication section in settings gives you control over how your team logs in to Dealfront, it allows you to enforce specific authentication methods across your entire organization, ensuring compliance with your company's security policies.

Anna-Maria Samuelsson avatar
Written by Anna-Maria Samuelsson
Updated today

What Are Authentication Methods?

Authentication Methods let you define which login options are available to all users in your Dealfront Company. When you disable certain authentication methods, users won't be able to use those methods to log in, instead, they'll be prompted to use only the methods permitted by your organization.

This is perfect for companies with internal security policies that require specific login methods across all the tools they use.

Please note: Only users with User Management Access Rights can modify authentication settings.

Supported Authentication Methods

You can enforce any of the following login methods:

  • Email & Password - Traditional username and password login

  • Microsoft login / MS Entra ID - Sign in with Microsoft account

  • Google Login - Sign in with Google account

  • Request one-time login token - One-time login link sent to the user's email

Please note: Currently, authentication methods can be enforced only if all users are part of a single Dealfront Company (which can still have several accounts). Learn more about Dealfront Company & Account relationships here.

This limitation helps prevent users from bypassing the enforced login method. We're working on adding support for users who belong to multiple Dealfront companies in the future.

How to Access Authentication Settings

STEP 1: Click on the Settings icon in the top right corner of the menu bar, then navigate to the Company tab.

STEP 2: In the left menu bar, click Authentication.

STEP 3: Here you'll see all available authentication methods. Toggle the methods on or off based on your organization's requirements.

STEP 4: Click Save to apply your changes.

My organization uses Microsoft Entra ID. How can I enforce login using Entra ID for all users?

You can enforce Entra ID authentication for all users in your Dealfront account by disabling all authentication methods except “Microsoft Login / MS Entra ID”.

Based on the “User consent settings” in your MS Entra tenant, there may be additional configuration required before all users can use the Microsoft login.

  • Do not allow user consent

    • If the user consent settings are set to this option, users can’t approve any new app permissions without an approval.

    • Users will either see an approval required screen with no request option or must use an admin consent request (if that workflow is enabled in your MS Entra tenant).

    • To allow all users to use Microsoft login in Dealfront:

      • An admin must login first and choose “Consent on behalf of your organization”

      • OR an admin must accept another user’s request to enable the new app for logging in.

  • Allow user consent for apps from verified publishers, for selected permissions

    • If the user consent settings are set to this option, all users can​ use Microsoft login in Dealfront without additional configuration.

  • Let Microsoft manage your consent settings

    • If the user consent settings are set to this option, all users can​ use Microsoft login in Dealfront without additional configuration.

Why This Matters

Many organizations have strict security policies that require all internal tools to support only specific login methods. With Enforced Authentication Methods, you can:

  • Maintain compliance with your company's security policies

  • Standardize login processes across your organization

  • Reduce security risks by limiting authentication options

  • Simplify user management by controlling how your team accesses Dealfront

FAQ

Q: Who can change authentication settings?

A: Only users with User Management Access Rights can modify authentication settings. If you don't have this permission, you'll need to contact someone in your organization who does.

Q: What happens to users who are already logged in?

A: When you change authentication settings, users who are currently logged in will continue to have access until they log out. The next time they try to log in, they'll need to use one of the permitted authentication methods.

Q: Can I enforce multiple authentication methods?

A: Yes! You can enable as many authentication methods as you'd like. Users will be able to choose from any of the enabled options when logging in.

Questions, comments, feedback? Please let us know by contacting our support team via the chat or by sending us an email at support@dealfront.com.

RELATED:

Did this answer your question?