Security
In this article, we’ll cover the Security tab in the Account Settings Window, and explain how admins can apply these security features account-wide.
We’ll show you how to enforce single sign-on so that all team members use one of our single sign-on options.
We’ll also look at two features that are available exclusively with our Unlimited Plans – the ability of Admins to disable Public Link Sharing account-wide, and their ability to restrict team members to approved email domains through the creation of a domain allowlist.
Enforce Single Sign-On
In order to provide an additional layer of account security, Admins can require all team members to use an SSO option, either via Google, OneLogin, or Okta.
Enabling the Enforce SSO Authentication option means that password-only login will be disabled for all team members. To learn more, check out the Single Sign On article in our Integrations section.
To enforce single sign-on:
- Open the Account Settings Menu in the lower-left corner of the Left Sidebar
- Select Your Profile from the Account Settings Menu
- Go to the Security tab
- In the Two Factor Authentication section, click the Enable 2FA button
- Confirm your password in the pop-up and click Continue
- The Configure Two-Factor Authentication window will open
Allow Public Link Sharing
This feature allows account admins to disable all public link sharing so that Anyone with the link can view option is unavailable when sharing a project.
In Moqups, the top toolbar’s Sharing button opens the Sharing window. From there, team members can choose two ways to share project links:
- Allow access to project collaborators only: With this option, the shared link only works for collaborators that already have permission to access the project (Team members, Contributors and Guests). This option is designed for sharing confidential work.
- Anyone with the link can view: With this option, anyone with whom the link has been shared can view the project online – even stakeholders that don't yet have a Moqups account. This is useful when you are reviewing and testing with a wider – or public – audience.
By default, public link sharing is allowed. However, to provide additional security for their proprietary designs and intellectual property, organizations may sometimes want to disable the Anyone with the link can view option – to prevent public link sharing altogether. Disabling public link sharing is retroactive, meaning that previously shared public links will no longer work.
To disable public link sharing:
- Open the Account Settings Menu in the lower-left corner of the Left Sidebar
- Select Your Profile from the Account Settings Menu
- Click on the Security tab
- In the Public Link Sharing, toggle Allow public link sharing to the ‘off’ position
Domain Allowlist
The domain allowlist lets you create a list of trusted email domains. Once enabled, only users with emails from that list can be added as team members within your account. However, outside collaborators – Contributors and Guests – can still be added to individual projects. The list is not retroactive, so adding domains won't affect current team members.
To enable a domain allowlist:
- Open the Account Settings Menu in the lower-left corner of the Left Sidebar
- Select Your Profile from the Account Settings Menu
- Click on the Security tab
- In the Domain Alllowlist section, toggle Enable domain allowlist to the ‘on’ position
