When you enable single sign-on for a hub, you should prevent users from signing in using other email accounts.
Once single sign-on is enabled, you should ensure that users are required to authenticate using the Identity Provider, and cannot use another existing account tied to their email address to log in. This reduces the chance of confusion for users about which account to use, and simplifies the administration of user accounts by only using the Identity Provider.
You can also, optionally, prevent users from updating their email address in the Account Settings page. If you turn on this option, you can add a message indicating how they can request an update to their email address.
-
On the task toolbar, click
.
-
Optional:
To prevent users from signing in using their member hub email and
password, select the
Allow members to sign in to the Hub using an email and
password checkbox.
When the checkbox is selected, users can sign in using their member hub email and password, along with any other configured options.
When the checkbox is deselected, the email sign in form is removed from the sign in page.
-
Optional:
To prevent users from changing their email address in the
page:
-
Enter a message to display to users in the
Account Settings page notifying them that
the cannot change their email address themselves, and how to request a change,
if applicable.
-
Enter a message to display to users in the
Account Settings page notifying them that
the cannot change their email address themselves, and how to request a change,
if applicable.