Brightest
  • πŸ‘‹Welcome to Brightest
  • Overview
    • πŸ’‘Brightest 101
    • πŸ”…New Client Onboarding Sequence
    • ✨Key Brightest Capabilities
  • Fundamentals
    • πŸ› οΈGetting set up
      • πŸ‘©β€πŸ’ΌGetting Started for Brightest Admins
      • πŸ“User Permissions
      • πŸ“¨Inviting Team Members
        • πŸ”‘Two-Factor Authentication
      • πŸ–ΌοΈOrganization Settings
        • πŸ“ΆESG and Sustainability Settings
      • πŸ”“Single Sign-on (SSO)
        • πŸ‡«πŸ‡²Microsoft SSO
        • πŸ‡«πŸ‡²Okta SSO
    • πŸ“‹Navigating Brightest
  • Product Guides
    • πŸ“ŠKPIs and Custom Metrics
      • ℹ️Creating a KPI
      • ℹ️Linking KPIs to Global licenses
      • πŸ—‚οΈOrganizing your KPIs
        • KPIs & Global licenses
      • πŸ’»Entering KPI data
    • 🎯Goals and Targets
      • β›³Setting Goals
      • Uploading Data to Goals
      • πŸ“‰Setting Environmental or Climate Related Targets
      • πŸ“ŠMateriality
    • βš–οΈDouble Materiality
      • 🌐Double Materiality in Brightest
    • 🌎CSR & Impact
    • ⚑Actions
    • πŸ“₯Surveys
      • πŸ“‘How to make a survey
        • Survey form features
    • πŸ‘₯Partners
    • 🏒Assets
      • πŸ—οΈBulk Asset Creation
    • ☁️Carbon Accounting
      • πŸŒ₯️How Carbon Accounting Works in Brightest
      • βž—Emissions Factors
      • πŸ‘©β€πŸ”¬Configuring and Customizing Emissions Factors
      • 1️⃣Scope 1 GHG
      • 2️⃣Scope 2 GHG
      • 3️⃣Scope 3 GHG
    • 🌿Collecting and Importing Sustainability Data
      • πŸ‘£Uploading Asset Footprint Data
        • Using the Add Tool
        • Uploading CSV Files
        • Uploading Utility Invoices
        • Adding Waste Data
      • πŸš›Uploading Transit Data
      • πŸ’±Financial Transaction (Spend) Data
        • πŸ’ΈSpend Capabilities
      • πŸ›οΈProduct and Materials Data
    • 🚩Tags
    • πŸ“ESG & Sustainability Reporting
      • ESG Reporting Standards & Frameworks in Brightest
  • Use Cases
    • 🏭GHG Emissions Measurement
    • πŸ–₯️Brightest for IT Teams
  • Roadmap
    • πŸ”†Our Product Roadmap
  • FAQs and Support
    • ❓FAQs
    • πŸ“§Contact Us
Powered by GitBook
On this page
  1. Fundamentals
  2. Getting set up

Inviting Team Members

Access roles and configuration overview

PreviousUser PermissionsNextTwo-Factor Authentication

Last updated 7 hours ago

Brightest tip: Remember, only Brightest administrators can invite other team members. Also remember, each Brightest license can use one login method: (1) email and password [default] or (2) secure sign-on (SSO) with Microsoft, Google, or Okta.

If you need SSO, please speak to your Brightest account executive or account manager.

To get started inviting your teammates, visit the "Manage Team" page in your dashboard.

Then click "Invite teammates" and fill in their name, email, and user role.

Once you've filled in the information for each user, click "Send invites" and automated email invitation links will be sent to each new team member with a link to activate their account. These emails come from hi@brightest.io

User access with SSO

Brightest supports secure single sign-on (SSO) access through a variety of identity providers (IDPs), including Microsoft Azure Active Directory, Google, and Okta.

Brightest SSO is implemented using Open ID Connect (https://openid.net/connect), a simple identity layer on top of the OAuth 2.0 protocol that allows Clients to verify the identity of the End-User based on the authentication performed by an Authorization Server, as well as to obtain basic profile information about the End-User in an interoperable and REST-like manner.

Once you've set up SSO in your account, you'll see a dedicated SSO login link on your "Manage Team" page:

To implement SSO with your Brightest account:

  1. Confirm with your IT department which SSO IDP your organization uses, and share that information with your Brightest relationship lead. Note: SSO set up, testing, and configuration requires an additional one-time implementation fee.

  2. Provide Brightest with a list or directory export of your Brightest account users within your Brightest onboarding questionnaire. Include (a) first name, (b) last name, (c) email, and (d) desired user role for each primary account user or admin.

  3. Brightest SSO implementation typically takes 1-2 weeks, depending on the size and complexity of your SSO Group directory and the availability of your IT department to configure and test on their end.

  4. If you need to adjust SSO user roles and permissions later on, Brightest account admins can perform these changes within your account (https://www.brightest.io/manage/team/), or you can change user roles and permissions programmatically using Brightest’s API and the OrgRole endpoint.

For more questions or to discuss Brightest SSO further, please contact your Brightest account representative. Our team is happy to meet with your IT department to confirm your requirements and optimal SSO set up approach.

πŸ› οΈ
πŸ“¨