Context: Candid is indifferent as to which password manager our users use, but given Candid does enforce two-factor authentication, we recommend using one! Most of our users go with 1Password, so we thought it would be useful to write up a quick guide on how to setup your 1Password to simplify and streamline the process of accessing Candid. This process takes ~1-2 minutes and will save you 10x that in your first month, so take the time to knock this out -- you'll thank us later 😊.
1Password + Candid Health Setup Checklist
- Create a 1Password entry for Candid Health.
-
Add the following two URLs, which will ensure that this data shows up automatically in-browser using the 1Password extension
- joincandidhealth.com
- auth0.com
This should look like this:
-
The first time you login to Candid (e.g. immediately upon account creation), you will receive an email inviting you to reset your password.
- Follow the link in the email to complete sign-up.In general, when logging into the Candid, we recommend going to joincandidhealth.com then clicking the Login button:
NOTE: If your company has SSO enabled, please follow instructions at How do I login to Candid if my organization has SSO enabled?
- Follow the link in the email to complete sign-up.In general, when logging into the Candid, we recommend going to joincandidhealth.com then clicking the Login button:
- You will be offered a choice between Google Authenticator or a Security Key. Either can be used with 1Password.
- If using Security Key
- Click Use Security Key
- You will see 1Password automatically try and save the key if you have the browser extension
- Click Use Security Key
- If using Google Authenticator:
- Scan your QR code into your two-factor authentication app of choice. We recommend using Google Authentication app. For those users who prefer to store two-factor passwords directly in 1password, this can be done when first encountering the "Scan QR Code" page during initial account setup.
-
Note: security experts have varying perspectives on whether two-factor authentication information should be stored in 1Password. Candid doesn't have a position on this question.
-
Note: security experts have varying perspectives on whether two-factor authentication information should be stored in 1Password. Candid doesn't have a position on this question.
- Scan your QR code into your two-factor authentication app of choice. We recommend using Google Authentication app. For those users who prefer to store two-factor passwords directly in 1password, this can be done when first encountering the "Scan QR Code" page during initial account setup.
- If using Security Key
And that's it! You've now (a) created a 1Password entry for Candid, which includes your email and password, (b) added the correct URLs to your 1Password entry to ensure that your credentials automatically populate when you go to any Candid application pages, and (c) stored your two-factor authentication details in your two-factor authentication manager of choice (e.g. Google, 1Password, etc).