User authentication ensures that only authorized users are accessing school communications. Being able to verify the identity of all of your users ensures that messages and interactions are secure, helping to foster a trustworthy environment for all involved.
This article is for district administrators to understand what authentication options are available in Messages XR Enterprise.
This is a Help for District Administrators article, providing comprehensive support for those with the highest level of access as they help their communities get started with Messages XR Enterprise.
Once you understand the options, you can check out the article, “Enable and configure your authentication option” to get started configuring and activating the settings.
Important Note
It’s possible to use different methods to verify your users' identities. If the first method doesn't recognize the user, it will automatically try another method you've set up. Finalsite’s team can help you to choose the best options that work for your scenario.
Authentication settings
Once the implementation and data teams have assisted you with the configuration of your authentication, you may or may not need to go in and configure the Authentication settings you see below attached to any of the Primary authentication options you see in your Messages XR Enterprise platform.
Important Note
If you are out of implementation and considering a different authentication option, please reach out to your Client Success Manager or email clientsuccess@finalsite.com to receive assistance with an authentication transition.
Global settings > Authentication
Navigate to the Global settings tab in Settings.
Scroll down to the Authentication settings to open them up into a new window.
Here you can configure all of the settings which will control the authentication method(s) you would like to implement on your platform. Learn more about how to configure the authentication settings in the article, “Enable your authentication option.”
Primary authentication options
Facebook authentication
Facebook authentication is convenient and secure for school communication platforms, using familiar login methods and integrating seamlessly. When users log in with Facebook, their profile and email address are shared, verified, and saved, ensuring quick and easy access. Future logins are streamlined, with Facebook automatically passing the necessary information for authentication.
To learn more, read, “Enable Facebook authentication.”
Google authentication
Google authentication is a good option because it combines robust security, user convenience, seamless integration, reliability, and supports single sign-on (SSO) for a streamlined and secure login experience.
To learn more, read, “Enable Google authentication.”
Apple authentication
Apple authentication ensures secure user verification by using methods such as Sign In with Apple, which employs Face ID, Touch ID, or passcodes, and two-factor authentication (2FA). It also prioritizes user privacy by minimizing data sharing and allowing users to control what information is shared with apps and websites. This combination of security measures and privacy protection provides a seamless and trustworthy login experience.
To learn more, read, “Enable Apple authentication.”
LDAP authentication
Using your LDAP directory server allows your district or school to provide single sign-in where one user name and password is shared between many different services. The information from your LDAP server will be used to authenticate the user. Users will not be able to update their user names or passwords through the platform.
To learn more, read, “Enable LDAP authentication.”
SAML authentication
Some districts and schools use a third-party identity provider for user authentication. The district or school is in charge of their own identity management and provides support with the details on how to connect using Security Assertion Markup Language (SAML). This feature was designed for staff members, such as teachers, to sign in with their standard credentials.
To learn more, read, “Enable SAML authentication.”