You can log into the SecurityScorecard several ways, depending on your needs or your organization's policies.
Use your business email and a password
You can sign up and log in using a traditional combination of your business email address and a custom-created password.
Passwords must include the following to be accepted:
- 10 or more characters
- At least 1 uppercase letter
- At least 1 lowercase letter
- At least 1 symbol ( ~!@#$%^&*()_+{}[]<>)
- At least 1 numeral
You'll be required to accept the SecurityScorecard Terms and Conditions before logging in.
Use Google Single Sign-On (SSO)
If you have an email address that belongs to a Google Workspace account, you can use it to sign up and log in, instead of having to create another email and password to remember for the SecurityScorecard platform.
When you select the Google option, enter your Google credentials and grant access to SecurityScorecard. We won't receive any information about your Google password.
You'll be required to accept the SecurityScorecard Terms and Conditions before logging in.
Bypass Single Sign-On (SSO)
Admins can set up a list of users allowed to bypass using SSO by going to My Settings > Admin Settings > Single Sign-On (SSO). (not available for customers using our free plan)
Use a passkey for FIDO authentication
How do I set up FIDO authentication? (not available for customers using our free plan)
-
To register an authenticator, you need to log in into the platform.
-
Click on your profile image in the top right corner, and select My Settings.
-
Under 'Security' section on the left, you will see a FIDO2 Authenticators section.
-
You can click on Add Authenticator and follow your browser instructions. (The name is only for recognizing your authenticators).
5. Once you have finished adding the authenticator, you can log out and go to: https://platform.securityscorecard.io/#/?fido-test
6. Enter your email, click the Fido log-in button and follow the browser instructions.
Login FAQ
Do I get locked out after failed log-in attempts?
Yes, you'll be locked out for 15 minutes. If you try to log in during that lockout window, the 15 minutes restart. You can unlock your account by resetting your password.
How can I reset my password with SecurityScorecard?
- If you're using SecurityScorecard credentials, use these instructions to reset the password.
- If you're using Google SSO, change your password with Google directly. SecurityScorecard does not have your Google password
How long can I be idle before getting automatically logged out?
You can be idle for one hour, after which you are logged out.
Does my password ever expire?
No, but it's a good security practice to periodically reset your password and create a new one.
Can I reuse an old password?
Yes, but it's a good security practice not to reuse old passwords.
I signed up with a traditional login at first. How do I switch to Google SSO?
You can have a SecurityScorecard and a Google SSO login if the email addresses of each are identical.
- If you set up a SecurityScorecard login first, go to https://platform.securityscorecard.io/#/start and click the button to sign in with Google. Then follow the steps to set up that option.
- If set up Google SSO login first, go to https://platform.securityscorecard.io/#/signup/ and fill out the form with the same email address to start the process of setting up a password. You’ll receive an email with a link to set up the password.
Can we use Google accounts other than Google Workspaces?
The SecurityScorecard platform only accepts Google Workspaces. You cannot use Google Mail (Gmail) or any other free webmail domains Google offers.
I’m having trouble logging in. How can I get help?
Submit a Support request for help.