Top
    Login
    Contents x
    End-user authentication
    • 07 Aug 2025
    • 2 Minutes To Read
    • Print
    • Dark
      Light
    • PDF
    Contents

    End-user authentication

    • Updated On 07 Aug 2025
    • 2 Minutes To Read
    • Print
    • Dark
      Light
    • PDF
    Article summary

    Overview

    If your organization has strict security policies that prevent business process data, Personally Identifiable Information (PII), or other sensitive content from being exposed outside your organization, you need an additional layer of security between the Whatfix platform and your end users.

    The End-user authentication feature prompts your end users to authenticate themselves with valid credentials using your organization’s Single Sign-on (SSO). After authentication, they can see Whatfix content.

    Note:

    Prerequisites:

    • The End-user authentication feature is enabled.
    • Your IT team must permit authentication tabs in the site settings for your application.
      End_User_Auth.png
    • If you use a Browser extension method of delivery, you must whitelist the Whatfix domains for the extension to access and display the content.
    • Lack of permission for domains such as whatfix.com and region-specific domains such as eu.whatfix.com might result in authentication failures and frequent re-login attempts.
    • Ensure that such domains or any other specific domains are added to the site access settings of the browser extension page. For more information, see Change site settings for an extension.

    Best Practice:
    The host application where Whatfix is deployed should use the same SSO as Whatfix to provide a seamless login experience.

    For example, if you have configured a Self Help widget on the application, initially your end users can see the Self Help in the collapsed state. However, when they click Self Help to view the content, the SSO authentication tab appears. Authentication happens only when end user clicks the Self Help widget since the collapsed state does not contain sensitive information. If the login fails, the Self Help segment prompts them on-screen to re-trigger the login window.

    Note:

    End-user authentication is also supported for Improved Self Help.

    However, if you've configured Task List, Beacon, Pop-up, Smart Tip, Survey, or Launcher on the application, End-user authentication happens automatically before the content is displayed on the page. Since the above-mentioned content might show sensitive information even without the user clicking them, End-user authentication ensures that only authenticated users can see the content.

    Info:

    • End-user authentication is only done once per session. If your application has both Self Help and Task List widgets on the same page and the authentication is already done for Task List, it is not done again when the end user opens Self Help.

    • If the end user has logged in to the application using End-user authentication, they will be logged in for 45 days until the session expires.

    • End-user authentication is available for both JS Embed and Browser Extension modes of deployment.

    Enable End-user authentication

    To enable End-user authentication, contact support@whatfix.com.

    Was this article helpful?
    Related Articles
    What's Next
    Privacy Policy | Whatfix Glossary | Whatfix Platform Status
    Copyright © 2025 WHATFIX TM. All rights reserved.
    Change password!
    Changing your password will log you out immediately. Use the new password to log back in.
    Change profile
    Success!
    First name must have atleast 2 characters. Numbers and special characters are not allowed.
    Last name must have atleast 1 characters. Numbers and special characters are not allowed.
    Enter a valid email
    Enter a valid password
    Your profile has been successfully updated.
    Logout