Use proof security settings to configure default access to proofs and whether reviewers must authenticate before viewing them. These settings apply to both licensed users and guest reviewers and ensure that only the right people can open shared content.

Available for administrators on: Business Legacy, Standard Pro Enterprise

• Location: Settings > Proofing Settings > General

  

  Configure default security settings 

  Ziflow administrators can manage proof security defaults. 

  1. Go to Settings > Proofing Settings > General.
  2. Choose a security setting in Proof security.
  3. Set to allow users to edit this setting or disable.

  Depending on your Ziflow edition, different security options are available.

  Proof security settings

  When a proof requires authentication, Ziflow verifies the reviewer before granting access. If the reviewer is a licensed user, they log in with their password.

  If the reviewer is a guest:

  1. The guest opens the proof link and sees a verification prompt.
  2. Ziflow emails a one-time verification code to the guest. Verification codes expire after 15 minutes. Guests can request a new code if it times out.
  3. The guest enters the code to continue to the proof.

  Setting	Description
  Users & guests (authentication not required) Std Pro Ent	Anyone added as a user or guest reviewer can open the proof without authenticating.
  Users & guests (authentication required) Ent	Users and guests can access the proof, but authentication is required before the proof opens.
  Users only (authentication not required) Std Pro Ent	Only licensed users can access the proof. No authentication needed.
  Users (authentication required) Pro Ent	Only licensed users can access the proof, and they must enter their Ziflow password to open it.

  Allow users to change proof security

  Administrators can choose whether proof creators are allowed to change the security setting when creating proofs by using the Allow editing toggle next to the setting. If Allow editing is toggled on, proof creators can choose any available option when creating a proof.

  Configure guest reauthentication

  Enterprise

  Administrators can set how often guest reviewers must reauthenticate on each device.

  Each licensed user includes a limited number of guest authentications per month. See your billing settings or the pricing page for limits.

  1. Go to Settings > Proofing Settings > General.
  2. In Proof Sharing, set Require guest reviewers to authenticate.
     After authenticating, the guest stays signed in for the duration defined (1 hour, 24 hours, or 7 days).

   

•  

  Where is the feature setup? Proof security settings can be found inside the Settings, under the General tab.

  Features listed in this article:

  1. Business Legacy Security settings

  2. How does the authentication process work for guest reviewers?

   

  

  Business Legacy editions allow you to choose from 3 different settings.

  Ziflow admins manage these settings. The admins can choose a default and decide whether or not they want proof creators to have access to change this setting. If the admin sets no default, proof creators may decide which setting should be applied.

  1. Users & Guests (Authentication not required) - users and guests may access proofs but they don't need to authenticate.

  2. Users only (Authentication not required) - only users can access proofs, but authentication is not required.

  3. Users (Authentication required) - only users may access proofs, but they must provide their password before accessing the proof.

  Additionally, Ziflow admins can set how often a guest reviewer needs to authenticate on each device. This setting is located in the same place as proof security settings.

  

  ---

  How does guest authentication work?

  A verification request will be shown when a guest reviewer tries to access proof that requires authentication.

  The guest will receive an email containing a verification code. Once that code is successfully confirmed, the reviewer can access the proof.

  

   

  Additional information

  • The verification code expires after 15 minutes, but guests can request a new token be emailed.

  • After a guest is authenticated, his/her session will remain for the time that was set by the admin (once every 1 hour, once every 24 hours, once every 7 days).

    

  • Please note: the number of guest authentications in your Ziflow account is limited. Each user license has 25 guest authentications per month. Please check our pricing page for more details.