Before you start
You must have access to admin.adaptivesecurity.com to setup authentication for you Adaptive instance.
Adaptive Web Applications
Adaptive splits it's user experience across two web applications:
app.adaptivesecurity.com (Employee Training App)
This is where employees log in to take training / manage their adaptive profile
admin.adaptivesecurity.com (Admin Portal)
This is the workspace for admins / team members directly responsible for managing training, phishing, and other Adaptive functionality
Authentication for the two applications exist separately, meaning as part of your Adaptive onboarding you will configure authentication options for each application separately. Reference the below table for supported authentication options:
Login Option | Admins / Admin Portal | Employees / Training App |
Password | ✅ | ❌ |
OIDC / SSO (Google, Microsoft, Okta) | ✅ | ✅ |
Magic Link | ❌ | ✅ |
SAML | ✅ | ✅ |
By default, we enable the following for each company:
Employee Training App: Magic Link
Employees will receive emails with links to authenticate and take their training
Admin Potal: Microsoft OIDC and Google OIDC
For these there is no setup required. In order to log in, a users email must be added as an Admin to the Adaptive account
Configuration Steps
1. Log in to the Adaptive Admin portal and navigate to 'Settings' in the left side navigation. Select the 'Authentication' tab at the top of the page.
2. Here you will find a configuration section for each of Adaptive's applications.
It is required that each application have at least 1 authentication option enabled. For admins, we always suggest having 2+ authentication options enabled to prevent potential lockouts incase of an outage with the SSO provider.
Adding a new authentication option
1. Select the '+ Add Option' button in the section that corresponds with the application you want to configure authentication for. There will be a modal showing the authentication options available for that app.
REMINDER: If you want both the Employee Training App and the Admin Portal app to use a given authentication type, you need to ensure that option is added to each section on the above page.
This may include additional steps in your third-party to set up the associated authentication options (e.g. you will have to create two SAML apps / connections in the third party system -- one for each Adaptive app). If that's required it will be called out in our integration specific documentation for a given option.
2. After selecting the authentication option and clicking continue, you will be taken to the next step of setup. NOTE: Some authentication options will be activated immediately after clicking continue if there is no additional setup required (password, magic link, Google OIDC, Microsoft OIDC).
3. Following the instructions related to the authentication option you select:
Removing an authentication type
Each Adaptive application is required to have at least 1 authentication option active at all times. If there is only one option active, the 'Remove' button will be inactive for that option.
If you have multiple options enabled you will see the 'Remove' button. Click the remove button and confirm the removal by clicking 'Remove' on the subsequent modal
After removal, users will no longer see that option after entering their email in the Adaptive log in page. If you wish to re-add the option in the future you will need to re-enter the connection specific value in Adaptive (there is no option to 'restore' a previous connection)
Managing an authentication connection
For authentication options that require third-party setup, you will also see a 'Manage' button next to the authentication connection.
Clicking manage will open up the configuration values / inputs for that specific connection.