- \n
- Organization Profile<\/a><\/li>\n\n\n\n
- Security<\/a><\/li>\n\n\n\n
- Administrators<\/a><\/li>\n\n\n\n
- Customize Email<\/a><\/li>\n\n\n\n
- Features<\/a><\/li>\n<\/ul>\n<\/li>\n\n\n\n
- Once you’re finished making updates in a given tab, click Save<\/strong>. <\/li>\n<\/ol>\n\n\n\n
Organization Profile<\/h2>\n\n\n\n
The Organization Profile<\/strong> houses general settings that your users will encounter. This is where you can find your Organization ID<\/strong>, or Customize Logo<\/strong> for the company. You can adjust User Portal settings like enabling read-only access for users, or change session timeout. You can also disable SSO with Google access, or Request to Delete<\/strong> the organization entirely. <\/p>\n\n\n\n
General<\/h3>\n\n\n\n
To name your Organization<\/strong>:<\/p>\n\n\n\n
- \n
- Under Settings<\/strong> > Organization Profile<\/strong> > General<\/strong> section, you can apply an Organization Name<\/strong>, Contact Name<\/strong> and Contact Email<\/strong>.\n
- \n
- Various emails will include a contact link to this contact name and email.<\/li>\n\n\n\n
- If you do not set an Organization Name, you may encounter errors when performing certain actions, like enabling MDM for your org. If you encounter a “Bad Request: name is required” error, having this field empty is usually the reason.<\/li>\n<\/ul>\n<\/li>\n<\/ol>\n\n\n\n
<\/a>To access your Organization ID<\/strong>:<\/p>\n\n\n\n
- \n
- To view and\/or copy your Organization ID<\/strong>, click the \u2018eye\u2019 icon to display all characters.<\/li>\n\n\n\n
- Click the \u2018double page\u2019 icon to copy the ID.<\/li>\n<\/ol>\n\n\n\n
Customize Logo<\/h3>\n\n\n\n
- \n
- You can click Choose A File<\/strong>, or Upload or drag a file to add either a .png or .jpg with a transparent or white background. You can see what your logo will look like in Headers, Emails and Login from JumpCloud to your org\u2019s users under Preview Logo<\/strong>. <\/li>\n<\/ol>\n\n\n\n
![](\"\/wp-content\/themes\/jumpcloud\/assets\/images\/gutenberg-blocks\/note-icon.png\")
<\/p><\/div>Note:<\/strong> \nLogos must meet a minimum resolution of 400px X 400px and have a max file size of 780 KB.<\/p>\n <\/div><\/div><\/div><\/div>\n\n\n\n
- \n
- Click Save<\/strong> if these are your only changes.<\/li>\n<\/ol>\n\n\n\n
User Portal Settings<\/h3>\n\n\n\n
You can give your users read-only access in their User Portal, and\/or allow them to download the JumpCloud agent directly from their User Portal. <\/p>\n\n\n\n
- \n
- Select Enable read-only on the user portal\u2019s profile page for all users<\/strong> to limit their access. Clear the checkbox to disable this. <\/li>\n\n\n\n
- Select Allow all users to enroll devices through the User Portal<\/strong> so they can download the JumpCloud Agent directly from their User Portal. Clear the checkbox to disable this. See Enable Users to Install the Agent<\/a> to learn more. <\/li>\n\n\n\n
- Click Save<\/strong> if these are your only changes.<\/li>\n<\/ol>\n\n\n\n<\/p><\/div>Note:<\/strong> \n
You can’t customize the URL of the User Portal.<\/p>\n <\/div><\/div><\/div><\/div>\n\n\n\n
User Portal Session Duration<\/h3>\n\n\n\n
You can adjust the duration that the User Portal stays active before the session expires and the user is required to log in with their credentials again. This ensures that an idle device can’t be used by malicious parties to access sensitive data.<\/p>\n\n\n\n
<\/p><\/div>Note:<\/strong> \nThe default value for User Portal Session Timeout is 8 hours. <\/p>\n <\/div><\/div><\/div><\/div>\n\n\n\n
Considerations<\/strong>: <\/p>\n\n\n\n
- \n
- Activity is defined as interactions with the server, like launching apps (Identity Provider and Service Provider initiated) or updating user info. <\/li>\n\n\n\n
- Updates to the duration settings won\u2019t affect a user\u2019s current session but will apply the next time they log in. <\/li>\n\n\n\n
- The duration settings currently apply to all factors of authentication enabled for a user.<\/li>\n\n\n\n
- The duration settings apply only to the JumpCloud User Portal. In many cases, setting duration must be defined on the Service Provider side (ex: AWS, Slack etc).<\/li>\n\n\n\n
- When the browser session is terminated, the User Portal session will also be terminated. <\/li>\n<\/ul>\n\n\n\n
To set User Portal Session Duration:<\/strong><\/p>\n\n\n\n
- \n
- Set a User Portal Session Duration<\/strong> in Days<\/strong>, Hours<\/strong> or Minutes<\/strong> specifying how long you want the User Portal to stay active before going idle and prompting users for their login credentials. The minimum time you can set is one minute, and the maximum is 90 days. <\/li>\n\n\n\n
- Click Save<\/strong> if these are your only changes.<\/li>\n<\/ol>\n\n\n\n<\/p><\/div>Note:<\/strong> \n
The default value for Admin Portal<\/strong> session timeout is 60 minutes. The session length is not configurable<\/strong>.<\/p>\n <\/div><\/div><\/div><\/div>\n\n\n\n
Administrator Management<\/h3>\n\n\n\n
Administrators can have Single-Sign On (SSO) with Google enabled in their Admin Portal so they save time by using one set of credentials to access their Admin Portal.<\/p>\n\n\n\n
To enable SSO with Google for Admins<\/strong>:<\/p>\n\n\n\n
- \n
- Select Disable SSO with Google on Admin Portal<\/strong> to remove the ability for admins to access their Admin Portal through one set of credentials. Leave it cleared if you want them to be able to log in with one set of credentials. <\/li>\n\n\n\n
- Click Save<\/strong> if these are your only changes.<\/li>\n<\/ol>\n\n\n\n
To disable SSO with Google for Admins, see Disable Google SSO in the Admin Portal<\/a> to learn more.<\/p>\n\n\n\n
Note:<\/strong> \nEach Admin will need to connect their Google account to be able to log in to JumpCloud with Google.<\/p>\n <\/div><\/div><\/div><\/div>\n\n\n\n
To connect your Google account<\/strong>:<\/p>\n\n\n\n
- \n
- From the Administrators<\/strong> tab, select the Admin you want to edit.<\/li>\n\n\n\n
- In the Edit Administrator<\/strong> panel, scroll to Account Settings<\/strong>, then click Connect<\/strong>.
![\"\"](\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2023\/05\/edit-admin-connect-login-with-google.jpg\")
<\/li>\n\n\n\n - Follow the Google prompts to connect your account.
![\"\"](\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2023\/05\/connect-login-with-google.jpg\")
<\/li>\n\n\n\n - When your account is connected, click Sign in with Google<\/strong> on the JumpCloud Administrator login screen to sign in using your Google credentials.
<\/li>\n<\/ol>\n\n\n\nDelete the Organization<\/h3>\n\n\n\n
![](\"\/wp-content\/themes\/jumpcloud\/assets\/images\/gutenberg-blocks\/warning-icon.png\")
<\/p><\/div>Warning:<\/strong> \nOrg deletions are fully destructive and non-recoverable. <\/p>\n <\/div><\/div><\/div><\/div>\n\n\n\n
To delete the org<\/strong>:<\/p>\n\n\n\n
- \n
- Click Request to Delete<\/strong> to submit a deactivation ticket. You will be prompted to Enter Org ID to confirm<\/strong> the deletion request.\n
- \n
- Note<\/strong>: Support will reach out to you to confirm the account details for the deletion. In the meantime, remove all users and devices from this organization. See Delete an Organization<\/a> to learn more.<\/li>\n<\/ul>\n<\/li>\n\n\n\n
- Click Request to Delete<\/strong>.<\/li>\n<\/ol>\n\n\n\n
Security<\/h2>\n\n\n\n
For password settings, see Manage Password and Security Settings<\/a> to learn more.<\/p>\n\n\n\n
Admin Accounts<\/h3>\n\n\n\n
Select the option under Global MFA Requirement<\/strong> to require all Admins in the org to use Multi-Factor Authentication (MFA).<\/p>\n\n\n\n
<\/p><\/div>Note:<\/strong> \nThis setting is not available in Managed Service Provider (MSP) tenant orgs.<\/p>\n <\/div><\/div><\/div><\/div>\n\n\n\n
- \n
- When this setting is enabled, you can’t edit the Enable Multi Factor Authentication for Admin Login<\/strong> setting on the individual Admin level.<\/li>\n\n\n\n
- If this setting is enabled, and you later disable it, all individual Admins will still have MFA required, but the Enable Multi Factor Authentication for Admin Login<\/strong> setting is now editable on the individual Admin level. See Enable MFA for the Admin Portal<\/a> to learn more.<\/li>\n<\/ul>\n\n\n\n
Administrators<\/h2>\n\n\n\n
The Admin list shows you all the org’s admins, along with their details. From here, you can create new admins, edit existing ones, or request to delete an Admin.<\/p>\n\n\n\n
<\/p><\/div>Note:<\/strong> \nFor instructions on creating new admins, editing existing admins, and deleting admins, see Manage Admin Accounts<\/a>.<\/p>\n <\/div><\/div><\/div><\/div>\n\n\n\n
Tip:<\/strong> \nHover over the status of each API key to see what they mean. <\/p>\n\n\n\n
For example: There are 2 variants of the ENABLED status. One of them has a ‘key’ icon next to it, while the other version doesn’t. The one with the ‘key’ icon means the API key is enabled for this Admin, and they have generated a key. The one without the ‘key’ icon means the API key is enabled for this Admin, but they haven’t generated a key yet. <\/p>\n <\/div><\/div><\/div><\/div>\n\n\n\n
Customize Email<\/h2>\n\n\n\n
JumpCloud sends emails to users to notify them of various events. You can customize some of these emails to look and sound more like your org.<\/p>\n\n\n\n
This feature is disabled for all new organizations by default. It has to be enabled for your account in order to be able to customize the emails you send to your users.<\/p>\n\n\n\n
- \n
- Please reach out to either your Account Manager, or Customer Success Manager to have this enabled for your org.<\/li>\n<\/ul>\n\n\n\n<\/p><\/div>Note:<\/strong> \n
This feature is only available to paid customers. Free customers that have previously customized emails will see your templates in a read-only state in Settings > Customize Email<\/strong> in your Admin Portal. Emails will continue to be sent to users with the existing customized content as displayed in the Settings > Customize Email<\/strong> page. Templates may be reverted to the JumpCloud default content at any time. <\/p>\n <\/div><\/div><\/div><\/div>\n\n\n\n
Considerations<\/strong>:<\/p>\n\n\n\n
- \n
- There is a maximum of 500 characters allowed in each field. If you have previously created a custom email with more than 500 characters, you will still have access to it, but you won’t be able to add any additional characters. You will be able to edit the character count to be 500 or less. <\/li>\n\n\n\n
- Non-Latin characters are supported.<\/li>\n\n\n\n
- HTML isn\u2019t supported.<\/li>\n<\/ul>\n\n\n\n
Email Disclaimer<\/h3>\n\n\n\n
<\/p><\/div>Note:<\/strong> \nThe Email Disclaimer<\/strong> is used in all email communication, regardless of whether they have customized email content or not. <\/p>\n <\/div><\/div><\/div><\/div>\n\n\n\n
- \n
- Under Settings<\/strong> > Customize Email<\/strong> > Email Customization<\/strong> > Email Disclaimer<\/strong> you can add a message that will be added to the bottom of all communication from JumpCloud to your org\u2019s users.<\/li>\n\n\n\n
- You can see a preview of what the disclaimer will look like on the email by toggling Template Preview<\/strong> on. It will be seen at the bottom of the email right above Powered by JumpCloud<\/strong>. <\/li>\n<\/ol>\n\n\n\n
Choose a Template<\/h3>\n\n\n\n
- \n
- Under Settings<\/strong> > Customize Email<\/strong> > Choose a template<\/strong>, select which Email Template you\u2019d like to customize. The available templates are:\n
- \n
- Password Expiration Warning<\/strong>: This email encourages users to reset their password before an upcoming expiration date.<\/li>\n\n\n\n
- Lockout Notice<\/strong>: This tells users when they\u2019ve been locked out of their account after multiple failed login attempts. <\/li>\n\n\n\n
- Password Expiration<\/strong>: This tells users that their password has expired and needs to be reset.<\/li>\n\n\n\n
- Password Reset Confirmation<\/strong>: This email confirms a recent password change. <\/li>\n\n\n\n
- Password Reset<\/strong>: This asks new users to activate their account or reset their password. <\/li>\n\n\n\n
- Activation Email:<\/strong> This asks new users to activate their account. <\/li>\n\n\n\n
- Welcome Email – Google Workspace<\/strong>: This is sent to users when they are bound to Google Workspace.<\/li>\n\n\n\n
- Welcome Email – M365\/Azure AD<\/strong>: This is sent to users when they are bound to M365\/Entra ID.<\/li>\n<\/ul>\n<\/li>\n<\/ol>\n\n\n\n<\/p><\/div>Note:<\/strong> \n
When adding users via Entra sync or the API, a welcome email is sent to users, but that email is not customizable.<\/p>\n <\/div><\/div><\/div><\/div>\n\n\n\n
Email Content<\/h3>\n\n\n\n
- \n
- Under Settings<\/strong> > Customize Email<\/strong> > Email Content<\/strong>, you can view and modify the content of the currently selected Email Template<\/strong>. Tokens can be included in the various fields and the token\u2019s value at the time each email is sent will replace the token. This allows for greater customization. <\/li>\n\n\n\n
- The following email fields are customizable:\n
- \n
- Subject<\/strong>: Content for the email\u2019s subject line.<\/li>\n\n\n\n
- Title<\/strong>: Content for the email\u2019s title that appears at the top of the email.<\/li>\n\n\n\n
- Header<\/strong>: Content for the email\u2019s header that appears after the title and before the message content. <\/li>\n\n\n\n
- Message<\/strong>: Content for the email\u2019s main message. <\/li>\n\n\n\n
- Button Call to Action<\/strong>: Content for a button in the email message that calls for users to take an action, like Reset Your Password. <\/li>\n\n\n\n
- Footer<\/strong>: Content for the email\u2019s footer that appears below the message content.<\/li>\n<\/ul>\n<\/li>\n\n\n\n
- Click Save<\/strong> if these are your only changes.<\/li>\n<\/ol>\n\n\n\n
![](\"\/wp-content\/themes\/jumpcloud\/assets\/images\/gutenberg-blocks\/tip-icon.png\")
<\/p><\/div>Tip:<\/strong> \nClick the Reset to Default Content<\/strong> to revert all of your changes back to the default JumpCloud content.<\/p>\n <\/div><\/div><\/div><\/div>\n\n\n\n
Available Tokens<\/h3>\n\n\n\n
Tokens are variables that are replaced with attributes for your organization or your JumpCloud managed users. You can add tokens to email templates to include content that’s specific to your organization.<\/p>\n\n\n\n
Considerations<\/strong>:<\/p>\n\n\n\n
- \n
- If you mistype a token, it appears as plain text in the Template Preview<\/strong>. Valid tokens appear as links.<\/li>\n\n\n\n
- If a token attribute isn’t defined for your organization, the token appears as blank space in the email. <\/li>\n\n\n\n
- Tokens must be included exactly as they appear in the following list or they appear as plain text in emails. <\/li>\n<\/ul>\n\n\n\n
You can include the following tokens in your email templates:<\/p>\n\n\n\n
- Under Settings<\/strong> > Customize Email<\/strong> > Choose a template<\/strong>, select which Email Template you\u2019d like to customize. The available templates are:\n
- Please reach out to either your Account Manager, or Customer Success Manager to have this enabled for your org.<\/li>\n<\/ul>\n\n\n\n
- Click Request to Delete<\/strong> to submit a deactivation ticket. You will be prompted to Enter Org ID to confirm<\/strong> the deletion request.\n
- Click Save<\/strong> if these are your only changes.<\/li>\n<\/ol>\n\n\n\n
- You can click Choose A File<\/strong>, or Upload or drag a file to add either a .png or .jpg with a transparent or white background. You can see what your logo will look like in Headers, Emails and Login from JumpCloud to your org\u2019s users under Preview Logo<\/strong>. <\/li>\n<\/ol>\n\n\n\n
- Under Settings<\/strong> > Organization Profile<\/strong> > General<\/strong> section, you can apply an Organization Name<\/strong>, Contact Name<\/strong> and Contact Email<\/strong>.\n