Can I be locked out of my account if I enter the wrong username or password?
Yes. If you enter the wrong username / password combination five times, you will be locked out of your account for five minutes. After five minutes, you can try to log in again. This is for users who do not have SSO configured. For those who are using SSO to authenticate to BrainStorm, you would be locked out according to the configuration of your organizations identity provider.
What are the password requirements for BrainStorm?
If your organization is using SSO to manage access to BrainStorm, the password requirements are established by your SSO Identity Provider. If you are not using SSO, or if you are bypassing SSO for a particular user, the user's password must be eight digits in length. No other requirements are established at this time.
Does BrainStorm support multi-factor authentication or two-step verification?
BrainStorm fully supports multi-factor authentication or two-step verification with your organization's SSO Identity Provider. Multi-factor or two-step verification is not available for users who authenticate without SSO.
I setup SSO and and I get an error when I try to log in. Why is this happening?
If you are seeing Sorry, something went wrong or Error! An error has occurred at login, it usually means SSO is not configured correctly. The following list of troubleshooting options may help resolve this issue.
Make sure that you have completed both the IdP Configuration for your provider in addition to SSO setup in BrainStorm. SSO cannot be enabled until both configurations are complete.
For Azure AD, make sure that you are not using the Test option in the Azure AD IdP setup. Testing the configuration will not work in Azure because BrainStorm is Service Provider (SP) initiated, which means only the SP (BrainStorm) may initiate SSO at login. To test the configuration, you'll need to configure the IdP first, then configure SSO in the BrainStorm admin portal. After the SSO configuration in BrainStorm is complete, you can test the SSO configuration by logging into the BrainStorm admin portal with an incognito or private browser window.
Try using an incognito or private browser window. This will eliminate any cached account information and force the browser to initiate SSO.
Make sure that all attributes are mapped correctly.
From the BrainStorm Admin Portal, select Account > SSO.
Edit your identity provider, and continue to the Attribute Mapping screen.
Make sure the SSO Information and System Field Names are correct for your IdP and that there aren't any typos. Use the links below to view the correct attribute mappings for your IdP.
Make sure that the user exists in your organization's active directory. The email address you use must have an account and a license within your IdP to enable SSO.
For Azure, make sure the user is assigned to the BrainStorm SSO app. Using Azure, you can restrict which users can and cannot authenticate. If you have restricted access and only allow access to certain groups, the user must be part of the allowed group.
One of my users received, "The account you're trying to login with is not active yet due to pending signing a subscription agreement". Why is this happening?
The pending subscription agreement error will occur when a user attempts to sign in to the end user portal before an Account Administrator has signed in and clicked through the subscription agreement.
To resolve this issue, the main contact or someone with the Account Administrator role will need to sign in to the Admin Portal and accept the subscription agreement. If the admin is not seeing the agreement when they sign in, please contact Customer Support.