TABLE OF CONTENTS

• Overview
• SSO Login Flow
• Multi-Factor Authentication (MFA)
• Summary

Overview

This guide will walk you through the Single Sign-On (SSO) process, which enhances your login experience and strengthens security by leveraging Multi-Factor Authentication (MFA).

Benefits of SSO with Feefo

• Enhanced Security: By using SSO with MFA, your data is protected with an additional layer of security, reducing the risk of unauthorised access.
• Improved User Experience: SSO reduces the need to remember multiple passwords, simplifying the login process and saving time for users.
• Streamlined Access: Admin users can easily switch between different Feefo platforms using a single set of credentials.

SSO Login Flow

Feefo can support a direct connection between your own identity provider, such as Microsoft Office 365 and Google Workplace, and the Feefo Hub, allowing the you to use their own users and credentials to log in (SSO) with the Feefo Hub.

Note, All users wanting to use SSO must use the same, unique domain associated with that IdP, for example @feefo.com. All users will be enabled for SSO and no single user can be excluded.

Logging into the Feefo Hub has now been enhanced.

1. On the landing page a user must enter their email address.
2. If the domain is associated with SSO then the user will be taken to their identity provider password screen.
3. Once the correct password is entered, If enabled, you can choose whether to stay signed in.
4. You are then returned to the Feefo Hub login experience where you must complete MFA. 

Multi-Factor Authentication (MFA)

To ensure the highest level of security, Feefo has implemented MFA, which is required for all users. Here’s how to set it up:

1. Initial Login:

   • When logging into the Feefo Hub for the first time, you’ll be prompted to set up an authenticator for MFA.
   • You’ll need a mobile device with an authenticator app (such as Google Authenticator) or a TOTP/authenticator browser extension.

2. Setting Up MFA:

   • Follow the on-screen instructions to link your authenticator app with your Feefo account.
   • Once set up, the authenticator app will generate a one-time code that you’ll use to log in.

3. Alternative MFA Option:

   • After the first login, you can opt to use email-based authentication for MFA instead of the authenticator app.
   • This allows you to receive the one-time code via email.

4. Session Remembering:

   • You can choose to remember your login session for up to 30 days. This means you won’t need to enter a one-time code every time you log in during this period.

Summary

Feefo's SSO and MFA implementation are designed to provide a secure and seamless login experience for all users. By following the steps outlined above, you can ensure that your access to the Feefo Hub is both convenient and secure. If you encounter any issues during setup or have further questions, please reach out to our support team for assistance.