Pylon supports two authentication methods for portal and knowledge base login for your customers - passwordless and JWT Single Sign On (SSO). These settings can be configured in the Workspace tab in your Pylon settings page.

Pylon requires that the users logging in must already be registered as contacts within Pylon, otherwise the login will fail.

Pylon has a setting to automatically create contacts using the user's email domain to match them to the appropriate account.

📄 Do contacts have to be created in Pylon to login to the portal?

Passwordless login

Our default authentication method allows users to input their email, and perform a no-password login using a one-time passcode sent to their email.

From there, they’ll be redirected to their customer portal only if they have access to the portal.

image.png

JWT SSO

Single Sign-On (SSO) allows users to log into different applications securely and quickly. Pylon uses the JSON Web Token (JWT) protocol for sign on.

Token Required Attributes

Token Optional Attributes

Pylon supports the following Signing Algorithms for JWT:

No other algorithms are supported (eg RSA SHA-256 or ECDSA P-256 SHA-256)

Configuration

To enable this for your customers, Pylon will need some information:

image.png

More details on adjusting visibility of articles after setting up customer authentication are available here.