Authentication
Adcyma supports two authentication methods: Magic Links (default) and Microsoft Entra ID Single Sign-On (recommended). There is no password-based authentication.
Zero-Password Security
Adcyma does not store or manage user passwords. This eliminates risks from password breaches, weak passwords, and credential stuffing attacks.
Magic Links (Default)
Magic Links provide passwordless access by sending a time-limited login link to a verified email address. They are the default method and are active whenever SSO is disabled.
How it works
- User enters their email address on the login page
- The system generates a cryptographically secure token and sends a link to that address
- User clicks the link and gets an active session in Adcyma
Security details
- Links expire after 15 minutes and are single-use
- Rate limited to 5 requests per hour per email address
- Session duration is configurable with automatic extension
Microsoft Entra ID SSO (Recommended)
SSO integrates with your Microsoft identity infrastructure. When enabled, users authenticate with their existing corporate Microsoft credentials, and Adcyma inherits your Entra ID security policies.
How it works
- User accesses Adcyma
- Adcyma redirects to your Microsoft Entra ID tenant
- User authenticates with their Microsoft credentials
- Entra ID redirects back with an authentication token
- User has access to Adcyma with the appropriate permissions
Why SSO is recommended
- Your existing MFA policies, conditional access rules, and audit logging carry over automatically
- Users get single sign-on across the Microsoft ecosystem with no extra credentials
- Admins manage provisioning, deprovisioning, and group-based access from Entra ID
- No email-based authentication step to worry about
Switching authentication methods
Administrators can enable or disable SSO at any time through Adcyma's Identity provider settings. When SSO is active, Magic Links are automatically disabled. When SSO is turned off, Magic Links become available again immediately.
Choosing a method
Use SSO if you have a Microsoft Entra ID tenant (Office 365 or standalone) and want centralized identity management. You need user accounts in Entra ID and administrator access to configure the integration.
Use Magic Links if you need quick deployment without Microsoft infrastructure, or for temporary and project-based access.
Account recovery
SSO access issues
- Contact your IT administrator first for Entra ID-related problems
- If that does not resolve it, contact Adcyma Support
- As a temporary workaround, an administrator can disable SSO to restore Magic Link access
Magic Link access issues
- Check spam/junk folders and verify your email address is correct
- If links still are not arriving, contact Adcyma Support with your setup information
Verification information
When contacting support, have the following ready: organization details from initial registration, administrative contact information, original configuration details, and billing/subscription information.
Security best practices
Magic Links
- Use corporate email addresses when possible
- Set up SPF, DKIM, and DMARC for your domain
- Tell users to check email promptly, never share links, and use them from the same device they requested on
- Report suspicious authentication emails to your security team
SSO
- Enable multi-factor authentication for all users
- Configure conditional access policies and group-based access controls
- Review user permissions regularly and monitor Entra ID audit logs
- Follow least-privilege principles and plan for SSO availability and backup procedures
Troubleshooting
Magic Links
If you did not receive an email, check spam/junk folders, verify the email address spelling, and make sure your corporate email server is not blocking emails from support@adcyma.com. If the problem persists, wait an hour (rate limiting) and try again.
Links expire after 15 minutes and are single-use. If a link is expired or already used, request a new one. Use the same device and browser when possible.
SSO
If you cannot access Adcyma, verify that your Microsoft account has appropriate permissions and is active in Entra ID, and check your group memberships. Contact your IT administrator for access issues.
For redirect problems, clear your browser cache and cookies, try a different browser or incognito mode, disable browser extensions temporarily, and verify you are using the correct Adcyma organization URL.
Administrators can disable SSO to restore Magic Link access as a fallback. Contact Adcyma Support with company verification details if needed.
Enabling and disabling SSO
To enable SSO:
- Configure Microsoft Entra ID integration in Adcyma's Identity provider settings
- Notify users of the change
- Enable SSO (Magic Links are automatically disabled)
To disable SSO:
- Open Adcyma's Identity provider settings
- Disable SSO authentication
- Magic Links become available immediately
- Notify users of the authentication method change
Getting started
Adcyma starts with Magic Links enabled by default. Administrators can enable Microsoft Entra ID SSO at any time and switch back if needed. For help configuring SSO, contact Adcyma support.