Idea

Can account owners bypass SSO and log in with a password?

Forum|Forum|2 years ago
December 5, 2023
6 replies
201 views

+2

kappel-fac

We would like to be able to allow the “Account Owner” to login with a password and bypass SSO.

I notice on the logon screen, it does support the “Login with a password” function. But, regardless, it always redirects to our IDP. Alternatively, there could be a special logon URL which bypasses SSO. I’ve seen it done multiple ways.

The typical use case is so that the privileged “Account Owner” account is NOT tied to an actual individual in the organization. Individuals come and go, and SSO can break. Therefore, we usually want the superuser account to be a generic, unlicensed, break-glass account that does not require SSO and is protected by MFA.

To be clear, we do NOT want any other user to be able to login via a “backdoor” password and bypass SSO.

Ambar D

Hi @kappel-fac, @Zoe H102, and @Backspace1534, thank you for your feedback!

Unfortunately, this isn’t currently supported in Lucid, but we’re very interested in your feedback and committed to continually improving our products.

We encourage anyone else who’s interested in this to upvote this post and share any additional details about your use case or what you’d like to see in this experience. For more information about how we manage feedback in this community, please take a look at this post:

I’d like to add that in the event you are locked out of your account, our Lucid support staff is ready to promptly help. If you are having trouble accessing your account, please let me know in this thread and I can direct your request to a private support ticket.

K

+2

kappel-fac
Author
Forum|Forum|2 years ago
December 5, 2023

We would also use this account as the default owner to transfer documents to when a user is deleted through whatever automation (scim?) process we use.

Like

+4

Zoe H102
Forum|Forum|2 years ago
December 14, 2023

Would you worry about a situation where the super-user was fired from their job, and they were able to access/delete/copy/damage the files out of spite, because they didn’t need to access via SSO?

Like

R

RSNSC
Forum|Forum|1 year ago
November 27, 2024

Would you worry about a situation where the super-user was fired from their job, and they were able to access/delete/copy/damage the files out of spite, because they didn’t need to access via SSO?

The OP states that the super user is NOT tied to an individual.

Having a break glass account to deal with any potential SSO issues is industry best practice, and needs to be implemented by Lucid.

Like

+4

Zoe H102
Forum|Forum|1 year ago
November 28, 2024

@RSNSC – You’re right. I don’t know what I was drinking when I made that comment. 😜

R

Like

B

Backspace1534
Forum|Forum|6 months ago
June 6, 2025

Adding support for the idea. I want to restrict standard users to authenticating via SSO only, but allow for the account owner to authenticate via password + 2FA. Our account owner is tied to a non-person entity.

Like

+10

Ambar D
Lucid community team
Forum|Forum|6 months ago
June 11, 2025

Hi @kappel-fac, @Zoe H102, and @Backspace1534, thank you for your feedback!

Unfortunately, this isn’t currently supported in Lucid, but we’re very interested in your feedback and committed to continually improving our products.

We encourage anyone else who’s interested in this to upvote this post and share any additional details about your use case or what you’d like to see in this experience. For more information about how we manage feedback in this community, please take a look at this post:

I’d like to add that in the event you are locked out of your account, our Lucid support staff is ready to promptly help. If you are having trouble accessing your account, please let me know in this thread and I can direct your request to a private support ticket.

Like

Create an account in the community

Log in to the community

Scanning file for viruses.

This file cannot be downloaded