Add trusted accounts

Dina Bennett
Dina Bennett
  • Updated

Many organizations use multiple Ziflow accounts to keep work separate for different clients, brands, business units, or regions. Trusted accounts let administrators create a trusted relationship between these accounts so users can work across them more easily while each account remains independent.

Available for Ziflow administrators on: Enterprise

Trusted accounts enable:

  • Trusted contacts: Active users from a trusted account are automatically added to the trusted account's contact list, making it easier to share proofs with approved users.
  • Controlled proof sharing: Administrators can limit proof sharing to users in their own account and trusted accounts, helping ensure proofs are shared only with approved users and domains.
  • Authentication: Admins and users can switch between Single Sign-On (SSO)–enabled accounts without re-authenticating each time. This also applies to two-factor authentication (2FA) and trusted device setups.
  • Trusted accounts require at least two separate Ziflow accounts. You cannot create a trusted relationship within a single account.
  • Trusted relationships can be established between accounts that use different email domains, as long as the required trust IDs are exchanged.
  • Trusted accounts must be hosted in the same regional data center. For example, you can create trusted relationships between two US accounts or two EU accounts, but not between a US account and an EU account. For more information, see Understand the EU data center and regional separation.

Before you begin

Before configuring trusted accounts:

  • Both accounts must be hosted in the same regional data center (US or EU).
  • You must be an administrator in the account.
  • Users must exist in each account where they require access.

Open Trusted accounts

To open, go to Settings > Security > Trusted Accounts

 

open-trusted-acocunt.jpg

Your trust ID is at the top of the Trusted Accounts page. Share this ID with other Ziflow accounts owned by your organization to establish trust.
By sharing your trust ID, you allow other trusted accounts to access information about your active users.

When another account adds your trust ID, your active users are automatically synced to their contact list as trusted contacts.

Add a Trusted account

  1. Select Add Account.
  2. Enter the Trust ID of the account you want to trust.

    add-trusted-account.jpg

    Ziflow confirms the connection and adds the account to your list.

Synchronization modes

Trusted account synchronization works in two ways:

  • One-way trust: Users from your account are synced to all trusted accounts.
  • Two-way trust: Both accounts exchange and update user contact lists automatically.
    To enable two-way trust, repeat the process in the other account (add your Trust ID to their Trusted Accounts list). Once mutual trust is established, both accounts stay synchronized.

To check your trust settings:

Look at the Trust relationship column for each trusted account.

one-way-trust.jpg

We trust them = One-way trust

We trust them and They trust us = Two-way trust

Authentication behavior

When accounts are trusted, users can switch between them without needing to log in again, whether or not SSO is used. This also applies when 2FA is enabled.
For example, if your primary account doesn’t use 2FA but a secondary trusted account does, you won’t need to authenticate again with 2FA when switching.

 

 

Related to

Was this article helpful?

Comments

0 comments

Please sign in to leave a comment.