You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: src/content/docs/enterprise/organization-management/settings/auhentication.mdx
+14-4Lines changed: 14 additions & 4 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -24,12 +24,22 @@ To configure your authentication settings, follow these steps:
24
24
25
25
## Security Options
26
26
27
-
Configure advanced security settings such as **Allow Signup**, **Two-Factor Authentication**, and **IP allowlist**.
27
+
Configure advanced security settings such as **Allow Signup**, **Admin-Managed Invitations**, **Two-Factor Authentication**, **Device Verification**, and **IP Allowlist**.
28
28
29
29
#### Allow Signup
30
30
31
31
Select whether people will be able to join the organization without prior invitation via email or a shareable link. After the registration, admins and project managers will be able to manage organization members' permissions.
32
32
33
+
#### Admin-Managed Invitations
34
+
35
+
Restrict the ability to invite new members to the organization to administrators only. When this option is enabled, project managers can still invite users who are already part of the organization to join their projects but won’t be able to add new users to the organization.
36
+
37
+
This option is useful when you want to maintain stricter control over who joins your organization, especially in regulated environments or when managing access centrally through a small group of administrators.
38
+
39
+
<Aside>
40
+
**Allow Signup** and **Admin-Managed Invitations** are mutually exclusive. Only one of them can be enabled at a time.
41
+
</Aside>
42
+
33
43
#### Two-Factor Authentication
34
44
35
45
Two-factor authentication ensures an additional level of security for your Crowdin Enterprise organization. Once you enable it, all organization members will be asked to set up two-factor authentication for their accounts. From this point, on each login, along with a username and password, organization members will use an authentication code.
@@ -50,21 +60,21 @@ Device verification can be bypassed if:
50
60
51
61
Grant access to your Crowdin Enterprise organization only to connections from allowed IP addresses.
52
62
53
-
With this feature, you can specify a list of IP addresses that can access your Crowdin Enterprise organization. For example, you can use IP allowlist to grant access only to connections from your corporate network while blocking all other connections from IP addresses that don’t belong to your IP allowlist. Once the IP allowlist is enabled, Crowdin Enterprise starts filtering all connections both via UI and API.
63
+
With this feature, you can specify a list of IP addresses that can access your Crowdin Enterprise organization. For example, you can use IP Allowlist to grant access only to connections from your corporate network while blocking all other connections from IP addresses that don’t belong to your IP Allowlist. Once the IP Allowlist is enabled, Crowdin Enterprise starts filtering all connections both via UI and API.
54
64
55
65
<Aside>
56
66
IP Allowlist is available only for the Business [subscription plan](https://crowdin.com/pricing#enterprise-plans) on Crowdin Enterprise.
57
67
</Aside>
58
68
59
-
To start using the IP allowlist, first form the list of IP addresses and ranges that should have access to your organization using CIDR notation.
69
+
To start using the IP Allowlist, first form the list of IP addresses and ranges that should have access to your organization using CIDR notation.
60
70
61
71
<ReadMore>
62
72
Read more about [CIDR notation](https://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing#CIDR_notation).
63
73
</ReadMore>
64
74
65
75
IP Allowlist can contain an unlimited number of IP addresses and ranges that can access your Crowdin Enterprise organization via UI and API.
66
76
67
-
Once you collected all of the IP addresses and ranges that should be added to the IP allowlist, [Contact Support Team](https://crowdin.com/contacts) to enable the IP allowlist for your organization. If you need to edit or remove some records from your IP allowlist, contact Support Team with the respective request.
77
+
Once you collected all of the IP addresses and ranges that should be added to the IP Allowlist, [Contact Support Team](https://crowdin.com/contacts) to enable the IP Allowlist for your organization. If you need to edit or remove some records from your IP Allowlist, contact Support Team with the respective request.
0 commit comments