# Login methods

We offer multiple methods to log in and the ability to restrict or enforce certain methods for added security.

<figure><img src="https://2091741164-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FvrraExym8pNEUvBDoima%2Fuploads%2Ff313kxfWvKHHmRcqSGbF%2FScreenshot%202026-04-09%20at%201.12.25%E2%80%AFPM.png?alt=media&#x26;token=f4befd9f-946a-4b90-8d79-ff02ee900e90" alt="" width="375"><figcaption></figcaption></figure>

## Login methods

### Email login

Log in with an email address and password.

If you forgot your password or need to reset it, click **Forgot password?** to receive a magic link.

Admins can configure a password policy in Company Settings, for example requiring a minimum length and a minimum number of digits, uppercase letters or symbols.

<figure><img src="https://2091741164-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FvrraExym8pNEUvBDoima%2Fuploads%2Fn1kv0B1Scno4gH9wbdtF%2FScreenshot%202026-04-09%20at%201.16.08%E2%80%AFPM.png?alt=media&#x26;token=c7b4e08c-390e-416d-822c-b1858fdcb6b9" alt="" width="375"><figcaption></figcaption></figure>

### Google authentication

Members can authenticate with Violet using Google authentication when using a Google supported email address.

### Slack authentication

Members can authenticate with Violet using Slack authentication when using an email address associated with a Slack account.

### Microsoft authentication

Members can authenticate with Violet using Microsoft authentication when using a Microsoft or Microsoft US supported email address.

We will need to work with your IT team to enable authentication with Microsoft US (GCC or GCC High).

### Okta

{% hint style="info" %}
Okta authentication is only available to customers on the Navigator plan.
{% endhint %}

Follow the instructions below to configure Okta authentication:

1. In Okta, create a new app in **Applications > Create App Integration > OIDC OpenID Connect > Application Type: Web Application**
2. In the new application:
   1. Client Authentication is: "Client secret"
   2. Sign-in redirect URI should be:
      1. For Violet: `https://violet.violetlabs.com/oauth/redirect/`
      2. For Violet Staging: `https://violet.staging.violetlabs.com/oauth/redirect/`
      3. For VioletGov: `https://violet.violetgov.com/oauth/redirect/`
      4. For VioletGov Staging: `https://violet.staging.violetgov.com/oauth/redirect/`
   3. Sign-out redirect URI should be:
      1. For Violet: `https://violet.violetlabs.com`
      2. For Violet Staging: `https://violet.staging.violetlabs.com`
      3. For VioletGov:`https://violet.violetgov.com`
      4. For VioletGov Staging: `https://violet.staging.violetgov.com`
3. Once your app is created, generate a client secret
4. In Violet, navigate to Company Settings and select Okta from the "Allowed Login Methods" dropdown menu.

<figure><img src="https://2091741164-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FvrraExym8pNEUvBDoima%2Fuploads%2FVemvNiWyrKKOT0C6bazv%2FOkta.png?alt=media&#x26;token=5398fd1f-ec33-40ec-9f54-cd0e8f3143c9" alt="" width="375"><figcaption></figcaption></figure>

5. In the Okta OIDC Configuration section, fill out the Okta issuer URL, Client ID and Client Secret. Scopes should be populated with: `openid profile email` . (This will be populated by default)

<figure><img src="https://2091741164-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FvrraExym8pNEUvBDoima%2Fuploads%2FtMIVfpDL1E40dHuUho87%2FScreenshot%202026-04-09%20at%202.49.05%E2%80%AFPM.png?alt=media&#x26;token=a3e16687-6a46-4c94-8e0c-5303f030d91f" alt="" width="375"><figcaption></figcaption></figure>

6. Click Submit.

### Two-factor authentication

Admins can enable Two-factor Authentication in Company Settings. To require it, deselect "None" from the dropdown menu and click Submit.

<figure><img src="https://2091741164-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FvrraExym8pNEUvBDoima%2Fuploads%2FXaALMW7q7NertkccQseA%2FScreenshot%202026-04-09%20at%202.48.12%E2%80%AFPM.png?alt=media&#x26;token=16610051-2053-4882-8c13-2c8b66d85c16" alt="" width="375"><figcaption></figcaption></figure>

### Restrict login methods

Admins can restrict specific login methods in Company Settings. To disable certain methods, deselect them from the dropdown menu and click Submit.

<figure><img src="https://2091741164-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FvrraExym8pNEUvBDoima%2Fuploads%2FYR4B64qmQp9P6O4DQFs8%2FRestrictLoginMethods.png?alt=media&#x26;token=c046f800-4d2f-4b18-b021-a7e6b148f481" alt="" width="375"><figcaption></figcaption></figure>


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.violetlabs.com/resources/administrative/login-methods.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.