Features
Tickets
DeskDirector Forms and Request Types
Importing Wufoo Forms to DD Forms
Getting started with DeskDirector Forms
DeskDirector Forms - Question Types in Detail
DeskDirector Forms - Webhooks
Setting up Request Types
DeskDirector Forms - Dynamic Fields
Request Type Ordering
Request more information (forms request)
Enable or Disable the 'Something Else' Option
DeskDirector Forms - Sections and Conditionals
Ticket Title Automation
Authentication
Chat
Getting Started with DD Chat
"Pre-Ticket Chat" Feature
"Call me Back" Feature
Creating a Chat Session
Handling Chat Requests
Changing your Presence
Subscribing to Webhooks
Viewing Chat History
Approvals
Menu System
Getting Started with the Menu System
Menu Items
Menus
Menu System - Changes to the Portal UI
BiggerBrains
Notifications
Email Notifications
Email Notifications Overview
Setup email template for Approval and Mail Login Token
Setup Email Notifications for Ticket Updates
Get Started with Email Template Engine - DeskDirector
Learning Center
Useful Learning Center Tips - Adding files from Google and Dropbox
Getting Started with the Learning Center
How to change the name of the Learning Center
Learning in DeskDirector
Broadcasts
Getting Started with Broadcasts
Who Can Send a Broadcast
Sending a Broadcast
Receiving Broadcasts
Sticky Broadcasts
Custom Domain
Webhooks
Deep Linking
Macros
Products
Portal
Tickets
Quotes & Invoices
Branding & Customization
HTML Email Templates - ConnectWise
HTML Email Templates - Autotask
Avatars in DDPortal
Branding - Logo
Theming in DeskDirector
New Features and UI Designs
Authentication
Enabling OAuth for DDPortal
How User Authentication works in DeskDirector
Diagnosing Automatic Login Issues
Logging in with a Username + Password
Logging in via URL
Logging in with Passwordless
Logging in with Active Directory
Permissions Configuration
Portal for Windows
Getting Started with DD Portal
Installing DD Portal
Diagnosing login problems using the new DDGetSID CLI tool
Antivirus Issues
Troubleshooting your DeskDirector Portal installation
Differences Between Portal for Desktop v2 and v3
DDPortal removal tool - uninstalling Windows portals
Portal for Mac
Adding Media to Play When First Launching the Client
The Flag feature (CW Only)
"Ensure VIP ticket's priority" Feature
Setting Up and Using the VIP Priority
FastTrack in DeskDirector
Contact Creation Rule
Customer Closed Tickets.
Browser Support for portal
Switching Accounts
Change Ticket Status when Customer Adds Note
Diagnose Portal for Desktop
Tech
Configurations
Account & FAQ
Portal and User Issues
Instance & Account Queries
Logging into the Admin Console.
3000 contact limit FAQ
The Admin Console Dashboard
Adding and removing features from your DD Portal Advantage plan
Finding out what server your DeskDirector instance is on.
Administration Guide
Enabling Master Admin
Other Articles
Creating an Integrator Login in ConnectWise (SOAP API)
Top 10 Request Types
Getting Started - Admin Console
Frequently Asked Questions
Using Markdown
Creating a ConnectWise RESTful API Key
CSV Reporting Tool
Generic vs Customized Request Types
DDPortal (Installed client) Vs. DDWeb (Web Client)
Ticket Description missing on ConnectWise emails
Creating an integrator resource in Autotask
Troubleshoot
Portal
My customer is seeing deleted tickets in portal
Contact can't login portal, the contact is missing in admin console but it is in ConnectWise
Authentication
Integrations
BiggerBrains
ConnectBooster
Connectwise Sell (previously Quosal)
How to configure ConnectWise Sell (previously Quosal) Order Porter integration
Adding ConnectWise Sell (previously Quosal) Order Porter link to opportunity
QuoteWerks
Wise-Pay
Microsoft Flow
How to setup the DeskDirector Flow Connector
How to share the DeskDirector Flow Connector
DeskDirector Flow Connector Reference
DeskDirector Flow Connector Ticket Event Payload Reference
Flow integration example - Microsoft Teams notifications
Flow integration example - workflow with user interactions
Release Notes
Outdated Articles
Common WuFoo errors
Changing the Summary of Wufoo Tickets
Creating your first Wufoo form
Adding Wufoo Forms To Request Support
Getting started with WuFoo Forms
Debugging Your Wufoo Integration
Server Changelog
Portal Release Notes - Windows/macOS
Portal Release Notes - Web Client
Automation
Advanced Use Case
Glossary
- All Categories
- Features
- Authentication
- Advanced Authentication. No password, Single Sign On, MFA and beyond?
Advanced Authentication. No password, Single Sign On, MFA and beyond?
Security is always a hot topic. We have some great solutions that are always improving.
Passwordless using one-use tokens sent to the mailbox
We have had passwordless logins for many years. It is our most popular method of authentication into the Portal
This is where we send a one-time use token to the users mailbox. The user doesn't have to remember a password and access remains as secure as the users mailbox.
The concept of passwordless came out around 2010 or maybe even earlier. It is adopted by many applications. Such as Slack, Microsoft, Medium, Twitter and WhatsApp. It is operated by sending SMS or email to given user which contains a short lived token used for login purpose.
For more detail on passwordless you can read Auth0 product page or Auth0 blog page.
For DeskDirector passwordless feature, we do have default setting on token. I will list below.
- Token is numeric
- Token will last 10 min
- Token length is 6 chars
- Token within expire time won't be removed on use
- Max failed retry is 10 (It will invalidate the token after 10 tries)
In general, the configuration we have now is secure, it is nearly impossible to guess 6 digit numeric chars in 10 tries.
These Passwordless features are currently only configurable by our consulting team for Dynamic clients only. We will be bringing self service into the Admin Console in the near future for everybody.
Passwordless tokens can be activated on a company by company basis.
Passwordless tokens can be activated on a company by company basis.
Single Sign on using Active Directory
If our Windows client is running in a Microsoft Active Directory Domain we can silently log the user using the Domain credentials. This is the most painless may to authenticate
2FA and MFA
The reason we call that as 2FA is similar to OAuth. As long as your email provider provide 2FA then passwordless is 2FA. Since you need access to email before you can login, thus, 2FA is checked during user access to their email account.
DeskDirector has held off implementing an SMS variation while we see how the debate on SMS security as a 2FA option plays out. There are ways to compromise an SMS token and we are reviewing regularly.
On a purely practical data level we find that almost every contact has an email address but many don't have a mobile number. The cell numbers are also entered in many variations and formats
Office 365 login
This is the solution of the future for customers that need more. If you want industrial strength Multi Factor Authentication and/or conditional (i.e. times/places) authentication Office 365 Auth is for you.. Office 365 accounts are Azure AD accounts and AzureAD delivers all these capabilities exceptionally well. There's a whole universe of security options available.
The best security implementation is clean and simple. With Office 365 we get Microsoft's AzureAD to do all the hard security work. The user tries to login to us. We send them to Microsoft to get an authentication workout. Microsoft reports success or failure. This is the future for all authentication
