Email domain rules determine how users are allowed to authenticate with Hyland Experience.
Federated authentication is available only for users whose email domains are assigned to at least one external identity provider. In the Administration Portal, you can add email domains to your Hyland Experience account, assign email domains to external identity providers, and decide whether any email domains should allow local authentication.
The following table describes how user sign-in options vary depending on how you have configured the email domain in Hyland Experience.
Condition | Result |
---|---|
Email domain is configured with Allow Local Authentication turned on. |
Users with the email domain can sign in using either local authentication (if they have local Hyland Experience credentials) or one of the domain's assigned identity providers. If the email domain is not assigned to any identity providers, then local authentication is the only sign-in option available for these users. |
Email domain is configured with Allow Local Authentication turned off. |
Users with the email domain can sign in only by using one of the domain's assigned identity providers. The email domain must be assigned to at least one identity provider. Otherwise, users with the email domain are unable to sign in. |
Email domain is not configured. |
Users with the email domain can sign in only by using local authentication, provided they have local Hyland Experience credentials. |