Authentication and authorisation
Authentication is managed via a custom Sitemate authentication service built on top of AWS Cognito and FusionAuth.
Authorisation in Dashpivot is controlled using Role-Based Access Control (RBAC). Access to data is configured based on business and security requirements, allowing administrators to control which users can view or edit specific information.
Sitemate also uses the OAuth 2.0 framework for authorisation. OAuth 2.0 enables secure access to protected resources without exposing long-term credentials.
Single Sign-On (SSO) and Multi-Factor Authentication (MFA)
Security can be further strengthened using Single Sign-On (SSO), ensuring that only authorised users can access the platform.
Benefits of SSO include:
Centralised access control via your Identity Provider (IdP)
Reduced password fatigue for users
Ability to enforce Multi-Factor Authentication (MFA)
Sitemate supports SSO for user login across all Sitemate products (Dashpivot, Flowsite, and Gearbelt) using industry standard protocols:
SAML 2.0
OpenID Connect (OIDC)
These protocols are supported by common Identity Providers, including:
Microsoft Entra ID
Okta
If you would like to enable SSO or learn more about identity and access controls, contact our team via Live Chat.
Please note that Sitemate currently does not support user provisioning for Dashpivot via Microsoft Entra ID. To grant users access to your workspaces, you must invite them directly within Dashpivot.