How can an organization define custom authentication methods based on company domain?

Lee Chickering
Lee Chickering
Once Ketryx Support verifies and configures a specific email domain for your organization, users trying to log in with an email address under that domain can use authentication methods defined specifically for your organization. Moreover, any new user logging in with a matching email address will automatically join your organization as a member.
Custom authentication methods include Okta as well as any OpenID Connect-compliant authentication provider. Organizations may also enable or disable authentication via email ("magic login links").
Once a custom authentication method is configured (e.g., for an organization with an email domain of, the login process would look like the following:
  1. User enters on the Ketryx login page and presses Continue with emailCustom authentication methods are determined based on the email domain
  2. If there is only a single authentication method, that is initiated immediately without further user interaction (e.g., redirecting to Okta for login, and then back to Ketryx)
  3. If there are multiple authentication methods configured for the organization, the user can choose one of them (which may include a button to retrieve a login link via email, as well as other authentication providers)
  4. Once a new user is authenticated, they automatically become a member of the organization based on the email domain
Organization-specific authentication methods are configured using the advanced setting Authentication providers. Contact Ketryx Support for assistance with this configuration.

Was this article helpful?

0 out of 0 found this helpful

Have more questions? Submit a request



Article is closed for comments.