Trusted accounts let administrators create a trusted relationship between separate Ziflow accounts. This allows trusted contacts to be added more easily to reviews.
A trusted relationship does not automatically grant trusted contacts access to another Ziflow account. Trusted contacts must be added as licensed users in each account they need to access. Trusted accounts synchronize contact information and simplify authentication for users who already belong to both accounts.
Available for Ziflow administrators on: Enterprise
Trusted accounts enable:
- Trusted contacts: Users from the trusted account are synchronized to the other account as guests who are trusted contacts. Trusted contacts can be selected to review proofs, but they are not automatically added as licensed users.
- Controlled proof sharing: Administrators can limit proof sharing to users in their own account and trusted accounts, helping ensure proofs are shared only with approved users and domains.
- Authentication: Administrators and users can switch between Single Sign-On (SSO)–enabled accounts without re-authenticating each time. This also applies to two-factor authentication (2FA) and trusted device setups.
- Trusted accounts require at least two separate Ziflow accounts. You cannot create a trusted relationship within a single account.
- Trusted relationships can be established between accounts that use different email domains, as long as the required trust IDs are exchanged.
- Trusted accounts must be hosted in the same regional data center. For example, you can create trusted relationships between two US accounts or two EU accounts, but not between a US account and an EU account. For more information, see Understand the EU data center and regional separation.
Before you begin
Before configuring trusted accounts:
- Both accounts must be hosted in the same regional data center (US or EU).
- You must be an administrator in the account.
- Users who need to switch between accounts must be added as licensed users in each account.
Open Trusted accounts
To open, go to Settings > Security > Trusted Accounts
Your trust ID is at the top of the Trusted Accounts page. Share this ID with other Ziflow accounts owned by your organization to establish trust.
By sharing your trust ID, you allow another account to synchronize information about your active users as trusted contacts.
When another account adds your trust ID, your active users are automatically synced to their contact list as trusted contacts.
Add a Trusted account
- Select Add Account.
- Enter the Trust ID of the account you want to trust.
Ziflow confirms the connection and adds the account to your list.
Synchronization modes
Trusted account synchronization works in two ways:
- One-way trust: Users from your account are synced to all trusted accounts.
- Two-way trust: Both accounts exchange and update user contact lists automatically.
To enable two-way trust, repeat the process in the other account (add your Trust ID to their Trusted Accounts list). Once mutual trust is established, both accounts stay synchronized.
To check your trust settings:
Look at the Trust relationship column for each trusted account.
We trust them = One-way trust
We trust them and They trust us = Two-way trust
Authentication behavior
When accounts are trusted, users who have access to both accounts can switch between them without signing in again. This also applies when 2FA is enabled.
For example, if your primary account doesn’t use 2FA but a secondary trusted account does, you won’t need to authenticate again with 2FA when switching.
Related to
Comments
0 comments
Please sign in to leave a comment.