Control Login Flow

Control how users authenticate by managing provider selection memory and available authentication sources.

Remember the Identity Provider

SecureAuth enables users to set a default identity provider for future logins using the Remember my Identity Provider feature.

How it works

1. Users see the Remember my Identity Provider toggle at the bottom of the login page
2. When enabled, the selected IdP becomes the default for future logins
3. Users can change their remembered IdP by selecting Select a different account

Configure IDP selection

1. Navigate to identity providers

   • From the workspace sidebar, select Authentication > Providers

2. Enable desired providers

   • From the Providers list, toggle Active for all IdPs you want to enable

3. Test the configuration

   • Log in to a demo application within your workspace
   • Verify users can select from the configured IdPs

Set up Identity Provider Discovery

Identity Provider Discovery automatically routes users to the correct provider based on their identifier. Choose your discovery mode:

• Configure Intelligent Discovery (recommended) - Automatic routing based on email domains or user lookup
• Configure Disabled Mode Discovery - Users manually select from provider list
• Configure Orchestrated Discovery - Advanced custom logic for provider routing

For conceptual information and decision guidance, see Understanding Identity Provider Discovery.

Limit Available Identity Sources

Use SecureAuth Extensions to restrict which identity sources users can authenticate with.

Use cases

• Security compliance: Limit authentication to approved IdPs only
• Simplified experience: Reduce choice overload for specific user groups
• Organization policies: Enforce authentication method policies

Implementation

Limit Available Identity Sources For Authentication

With SecureAuth Extensions, you can also limit available Identity Sources for the users to authenticate with.

For detailed configuration steps, see Setting up Intelligent Identity Source Selection for Users.

Troubleshooting

Remember IdP not working

Issue: Users don't see the Remember my Identity Provider toggle or it's not remembering their choice.

Solution:

1. Verify the feature is enabled in your workspace settings
2. Check that cookies are enabled in your browser
3. Test with different browsers to isolate browser-specific issues
4. Verify the IdP connection is active and functional

Limited authentication sources issues

Issue: Users can't authenticate with certain providers despite being configured.

Solution:

1. Check that the provider is marked as Active in Authentication > Providers
2. Verify the extension rules are correctly configured
3. Check user roles and permissions for the limited sources
4. Review logs to see which providers are being evaluated

See also

• Understanding Identity Provider Discovery
• Configure Intelligent Discovery
• Configure Disabled Mode Discovery
• Configure Orchestrated Discovery
• Single Sign-On Identity Providers