In this article:
Login Instructions (SSO w/MFA)
Following the SSO with MFA user account activation, eInsight users can follow the instructions below to log into and manage user access to the application.
Users can log into and access eInsight CRM by following the instructions below:
- Access eInsight via the application URL at https://einsight.cendyn.com (or the assigned URL for your hotel group) and the following screen displays:
- Enter your Username (i.e., jsmithe@hotelgroup.com) and select Next
- Enter your newly created Password and select Sign in
NOTE: If you forgot your password, select the Need help signing in? link. For more information on resetting and recovering your password, refer to that section of this document.
If you setup SMS as a secondary authentication method, the following screen displays:
- Select the Send code link and retrieve that code from your mobile device.
- Input the code in the Enter Code field and select
If you do not have access to the mobile device configured for MFA, and watch to switch to another method, select the drop down at the top of the window (the SMS callout bubble):
- Select the Email Authentication link to switch to email
- Select the SMS Authentication link to switch back to SMS
NOTE: These instructions only apply if you have configured MFA for both methods.
If you setup Email as a secondary authentication method, the following authentication screen displays.:
- Enter the verification code from the email sent to your registered email in the Verification code field and select Verify button
If you begin MFA for either SMS or Email and need to return to the main sign-in screen, select the Back to sign-in link from either modal.
NOTE: Simply closing the browser window will not terminate your SSO authentication. To properly terminate your account login, follow the applicable steps to log out of the application.
--------------------------------------------------------------------------------------------------------------------
SSO Portal Logins
Users can also login to eInsight CRM directly from the SSO authentication portal and can configure additional MFA methods not originally setup at first login.
Access Cendyn's SSO authentication portal by going to the URL https://login.cendyn.com and follow the same instructions for application direct logins with MFA verification
The following portal displays:
- Select the card for eInsight to open the application in a new browser window
- To log out of the SSO authentication portal, select your name in the top-right corner and select Sign out
NOTE: This will terminate your SSO authentication with all open applications but will not close the browser window of any open application, Though silent navigation is still allowed, features requiring security access are limited. To properly close any application, follow the applicable steps to log out of each.
It is recommended that you setup both SMS and Email MFA method for your login. To modify or setup a new MFA method, follow the steps below:
- Select your name in the top right corner of the SSO portal
- Select Settings
- In the Extra Verification section, delete an existing MFA method by selecting the Remove button.
- In the Extra Verification section, configure a new MFA method by selecting the Setup button.
To configure a different or new phone number for verification, you must first remove an existing SMS authentication and setup a new one.
NOTE: It is not possible to change the email address associate with Email Authentication as it uses the email address on file. However, you can remove email as a verification method.
--------------------------------------------------------------------------------------------------------------------
Password Rules and Policies
Below are the password policies and rules applicable to Cendyn's SSO for eInsight CRM and eNgage:
- Passwords must be a minimum of eight characters.
- Passwords must contain a least one lower and one upper case letter
- Passwords must contain at least one number
- Special characters are allowed in passwords.
- Passwords cannot contain part of username
- Use of common passwords is restricted (e.g., password123)
- Passwords expire every 120 days and user is auto prompted to reset their password
- Access to registered email is required to reset password or unlock accounts
- Because user accounts or passwords are shared between all applications, password resets and locked accounts are applicable for all applications - one account, one password.
- If eInsight application sits idle for more than 2 hours on a device, the SSO authentication expires, and user must login again to reestablish the session
- Users can log in on multiple devices, but authentication with MFA is required on all logins.
- Closing the application browser does NOT automatically log the user our on that device - users MUST follow proper procedures to log out of any application
--------------------------------------------------------------------------------------------------------------------
0 comments
Please sign in to leave a comment.