Skip to content

Users And Login Methods

Use this page when your business team needs to decide who can sign in and which methods they should use.

What You Configure

In SigID, a business team usually configures:

  • who can access a workspace or app
  • whether users are invited, approved, or allowed to self-serve
  • which sign-in methods are available
  • whether MFA or fresh verification is required for sensitive actions
  • what recovery or support path users should follow
  • whether some organizations must use SSO

Choose Sign-In Methods

Method Use it when Support question to answer
Passkeys You want a strong default that reduces phishing risk. What should users do when a passkey is on another device?
Email and password Users expect a familiar fallback. How do users reset passwords safely?
Magic link You want low-friction email-based sign-in. What should users do when a link expires or email is delayed?
MFA or fresh verification Sensitive actions need another proof. What happens if the user loses the MFA device?
SSO A company or customer wants users to sign in with its identity provider. Who owns domain, role, and identity-provider problems?

Invite And Test Users

Before sending broad invites:

  1. Verify the email list.
  2. Decide whether users can self-serve or need approval.
  3. Test at least one invite end-to-end.
  4. Confirm what the first sign-in prompt says.
  5. Confirm support knows how to answer passkey, password, magic-link, MFA, and SSO questions.
  6. Document what users should do if sign-in fails.

What Users Need To Understand

Users should know:

  • they should start from the app, not from a random SigID page
  • SigID is the sign-in and account-security step for that app
  • they should choose the method shown on the page
  • passkeys are usually the safest option when available
  • they should not approve prompts they did not start
  • they should contact the app or workspace support channel when recovery fails

For enterprise customers, continue to Organizations And SSO.