FAQ

What to do if a user loses their key/device and cannot access the site?

If a user loses their key or device, they should:

  1. Inform the administrator.

  2. The administrator removes the login method that the user set up during registration (passkey, hardware or platform key, Hideez Authenticator app) from the user's profile.

  3. The administrator sends an email to the user with an invitation to create a new login method.

  4. The user opens the email and selects a new login method, just as they did during the initial registration.

Can a custom domain name be created for the tenant instead of the default one?

When a customer creates a tenant, they must provide a tenancy name and select a region (US or EU).

Why am I already logged in Hideez, and no authorization occurs when I access my web application?

When a user accesses a web application while an active session is already open in the Hideez Identity Cloud, re-authentication is not required. This is because the user has a valid session in the Hideez Identity Cloud, which remains active for 30 minutes. Once this session expires, the user will be prompted to authenticate again when accessing the web application.

If the user wants to log out of their web application, they need to log out both from the web application and from Hideez Identity Cloud.

For SAML, the following additional logout settings (Single Logout) are possible:

  • If the web application you configured for SAML does not have Single Logout set up, logging out of the Hideez Identity Cloud will not log you out of your web application.

  • If the web application you configured for SAML has Single Logout implemented, logging out of the Hideez Identity Cloud will automatically log you out of your web application.

For OIDC, it is possible to configure logout from the web application as follows:

When the user logs out of the web application, they are redirected to Hideez Identity Cloud. The user will then be asked if they really want to log out of the web application, and afterwards, they will be redirected back to the web service where they will already be logged out.

How long does an open authorization session last?

The duration of an open authorization session depends on your organization’s or application’s settings. It can be configured to last for several hours, days, or even weeks. Typically, administrators can set these parameters according to security policies.

How to log out of the web application?

Note: After a successful login through the HES IDP, you will remain connected to your web application until you log out or the session times out.

To log out of the web application, you usually need to:

  1. Find the "Log out" option in the user menu.

  2. Click on this option.

  3. Ensure the session has ended, especially if you were using public or shared devices.

Can I administer multiple tenants simultaneously?

Yes, you can administer multiple tenants simultaneously if you have the appropriate access rights to these tenants. This is convenient for organizations that manage several departments or clients.

Can there be multiple administrators for the Hideez Identity Cloud?

Yes, multiple administrators can be assigned to the portal. This allows for the distribution of responsibilities and ensures continuous management in case one of the administrators is unavailable.

Last updated