Single Sign-On (SSO) Policy
Advent recognizes that industry leaders have implemented SSO capabilities to reduce friction for new users, eliminating the need for users to repeatedly prove their identity. While Advent can enable single sign-on for Enablement® during the client setup phase, we do not recommend SSO for clients using the Enablement® platform. A compromised SSO account could potentially expose all secured data managed by Enablement®, creating significant security risks.
One Click User Onboarding (Sign-up)
To facilitate seamless onboarding while maintaining zero trust security, Enablement® includes a secure direct-access link in new user notification emails. This link allows users to access the Enablement® platform and automatically log in with a single click. Once logged in, users can:
- Navigate the platform without additional authentication steps
- Access files shared with them based on their assigned permissions
- Read secured emails and reply or forward when permitted
Zero Trust Security-First Approach
The direct-access link is designed for one-time use only and cannot be used for subsequent logins. When users attempt to close their browser tab or log out, they receive a prominent warning that they must set their password before their session expires. This approach ensures that:
- Users experience frictionless initial access
- Account security is maintained through individual password requirements
- The risk of unauthorized access through compromised links is minimized
This security-conscious onboarding process balances user convenience with the robust protection standards that Enablement® clients require.