Home Onboarding Login options & Single Sign-On (SSO)

Login options & Single Sign-On (SSO)

Last updated on Jun 02, 2026

๐Ÿ’ก How to log in to NexCyber today, what SSO providers we plan to support, and how to request early access.

Login options & Single Sign-On (SSO)

This article covers how you and your team sign in to NexCyber โ€” what's available today, what's coming, and how to keep your login secure.

What's available today

NexCyber supports email + password authentication for every plan. Specifically:

  • Email/password sign-in at /login
  • Password reset by email
  • Email verification (required on signup)
  • Session cookies are HttpOnly, Secure, SameSite=Lax โ€” they cannot be read by JavaScript and are protected against the most common session attacks
  • Sessions expire after a period of inactivity to keep your account secure

Each member of your team uses their own email/password โ€” no shared accounts.

Password best practices

  • At least 12 characters, with a mix of letters, numbers and a symbol.
  • Don't reuse passwords across services. We recommend a password manager (Bitwarden, 1Password, KeePassXC, the built-in browser manager).
  • Change your password immediately if you suspect it's been compromised โ€” go to /profile โ†’ Security โ†’ Change password.

Two-factor authentication (2FA)

2FA is on our roadmap. We plan to support:

  • TOTP authenticator apps (Google Authenticator, Authy, 1Password, Bitwarden)
  • WebAuthn / hardware keys (YubiKey, Titan, Solo Key)

You'll be notified by email when 2FA becomes available โ€” no migration needed on your side.

Single Sign-On (SSO)

SSO is on our roadmap. We plan to support:

  • Google Workspace โ€” OAuth 2.0
  • Microsoft Entra ID (formerly Azure AD) โ€” SAML 2.0
  • Okta โ€” SAML 2.0
  • Generic SAML 2.0 โ€” for any IdP that speaks SAML

If SSO is a hard requirement for your evaluation, contact us via the chat โ€” we prioritise SSO rollout for committed customers on Command and Strategic plans.

What about SCIM / automatic provisioning?

SCIM 2.0 (automatic user provisioning and de-provisioning from your IdP) is on our roadmap, available with SSO.

Security questions

  • Where is my session stored? In an HttpOnly cookie on your browser, scoped to .nexcyber.eu. Never in localStorage or sessionStorage.
  • Can I log out remotely? Yes โ€” go to /profile โ†’ Security โ†’ Active sessions to revoke any session.
  • What happens if my account is compromised? Use the chat or email security@nexcyber.eu โ€” we can lock the account, force a password reset, and trigger an audit trail review.

โ†’ See "Set your notification preferences"

๐Ÿ’ฌ Need help?

  • Reach out via our live chat (bottom-right) โ€” Captain AI replies instantly, human experts within business hours.
  • Email support@nexcyber.eu with [P1] for Command/Strategic priority issues.

โ„น๏ธ Disclaimer โ€” RICE provides a readiness analysis, not legal advice. Final compliance may require legal review or notified body certification.

Last reviewed: 2026-06-02 ยท NexCyber Help Center