Single Sign-On (SSO)

SSO lets users log in with their existing identity provider rather than a separate Topscan password. Topscan currently supports:

  • Google — users log in with their Google account

When a user authenticates via SSO, their provider is shown in the SSO column of the Users table (e.g. "Google"). Users who don't use SSO show "Not Enabled."

Enabling SSO for your workspace

SSO is configured in Settings → My account. Users can individually link their Google account to their Topscan login.

Two-factor authentication (2FA)

2FA adds a second verification step at login — typically a time-based one-time password (TOTP) from an authenticator app.

The 2FA column in the Users table shows whether each user has 2FA enabled.

Enabling 2FA for your account

  1. Go to Settings → My account.
  2. Find Two factor authentication (TFA).
  3. Follow the setup steps to link an authenticator app.

Recommendations

  • Require Google SSO for all team members if your organization uses Google Workspace — it centralizes access control and lets you revoke Topscan access by deactivating the Google account.
  • Enable 2FA for Admin users who have access to billing and user management.

What's next