Premium and Enterprise authentication

By default, Asana’s regular authentication apply and your Organization Members have the choice to either use a traditional password or Google SSO to log into their respective accounts.

In Premium and Enterprise Organizations, Administrators can select how their Members log into Asana, set password complexity requirements and force reset all Members’ passwords.

Premium and Enterprise authentication settings only apply to your Organization Members. Organization Guests are not affected by your authentication settings.

Password complexity & Force password reset

Administrators have the option to force reset passwords for all Members in the Organization, and set a strength level requirement for passwords.

To manage password complexity and reset passwords

  1. Click your profile photo and select Organization SettingsOrganization Settings Organization settings are preferences set by Administrators and affect all Organization Members. Read more from the drop down menu
  2. Navigate to the Administration tab
  3. Select the Password Strength dropdown menu to choose between Strong and Simple password strengths
  4. Choose Password Reset to force reset all passwords

When you force reset passwords for your Organization, Members will be prompted to reset their password upon their next log in. Members already logged into their Asana account will be force logged out and will need to reset their password.

Google SSO

If your company uses Google Apps for business or education, and you are using the Premium or Enterprise version of Asana, you have the option to require your Members to authenticate via Google.

To change your Organization to Google SSO

  1. Click your profile photo and select Organization SettingsOrganization Settings Organization settings are preferences set by Administrators and affect all Organization Members. Read more from the drop down menu
  2. Navigate to the Administration tab
  3. Select the Members must log in with their Google Account radial button

From here, you will be redirected to a Google login page. Enter your Google login credentials to complete the setup.

You must enter the Google credentials tied to your company’s Organization email domain.

Once this change has been saved, any passwords associated to your Members’ Asana accounts will no longer work and they will be required to use Google SSO.

If you are changing the email domain associated with your Google accounts, please contact us so that we can add the new domain to your Organization.

SAML

If your company uses an identity provider like OneLogin, Okta, LastPass, Bitium, Azure AD, SecureAuth, or Active Directory, and you’re using the Enterprise version of Asana, your IT department will want to configure SAML. To set up SAML, you must:

  • Belong to an Enterprise Organization
  • Be an AdministratorAdministrator An Organization's Administrator can update the Organization settings from the administrator console. Read more of your Enterprise Organization

Once an Enterprise Organization has been set up with SAML, the Organization Members will no longer need a password to log into their accounts. From the login page, they can just enter their email and click Log In, leaving the password field empty.

Step One: Configure your IDP

If you meet those conditions, the first step is to configure Asana with your identity provider. The steps for OneLogin, Okta, LastPass, Bitium, SecureAuth, and ActiveDirectory are listed below, but you can also do this for other identity providers:

OneLogin

  • In OneLogin, go to Apps > Find apps
  • Search for Asana
  • Click add next to Asana
  • Click Continue
  • Copy the the sign-in page URL and x.509 certificate somewhere for use in Step Two

Okta

  • In Okta, click the Applications tab
  • Search for Asana
  • Copy the Log-in URL and the x.509 certificate for use in Step Two
  • Learn more here  

LastPass

  • In LastPass Enterprise, first go to your Enterprise Console and select the SAML tab at the top of the console. You will then be taken to the main SAML page
  • Click the Asana app icon
  • Follow the instructions on the screen
  • Copy the Log-in URL and the x.509 certificate for use in Step Two

Bitium

  • In Bitium, click Manage Apps from the top bar
  • Click Add An App
  • Search for Asana
  • Copy the Log-in URL and the x.509 certificate for use in Step Two
  • Learn more here  

Azure AD

Check out this article to find out how to set up SAML for Asana with Azure AD.  

Active Directory

Check out this document to find out how to set up SAML for Asana with Active Directory.  

SecureAuth

Check out this article for step-by-step instructions on setting up SAML for Asana with SecureAuth.  

Step Two: Configure Asana

After you’ve configured Asana with your identity provider, you now make the appropriate changes in Asana.

To change your Organization to SAML

  1. Click your profile photo and select Organization SettingsOrganization Settings Organization settings are preferences set by Administrators and affect all Organization Members. Read more from the drop down menu
  2. Navigate to the Administration tab
  3. Select the Members must log in via SAML radial button
  4. Paste the sign-in page URL that you copied from Step One into its corresponding field
  5. Paste the X.509 Certificate that you copied from Step One into its corresponding field
  6. Click the Save button

Once set up properly, anyone who belongs to your company’s Enterprise Organization will be required to log in to their Asana account with your preferred identity provider (regardless of other Organizations or Workspaces their account may belong to).

If you are an Administrator and are having trouble with setting up SAML for your Enterprise Organization, contact us.  

Log in

or

Forgot your password?

Sign Up

Please use your work email address, so we can connect you with your team in Asana.

Sign Up

Please use your work email address, so we can connect you with your team in Asana.

Enter a work email address

This email looks like a personal email address. If you want to be connected with your team, please use your work email address.

Enter a work email address

Why are we asking? Continue with my email

Oops, we couldn’t sign you up!

We tried, but there was a problem creating your account. Please close this window and try again!

Hey there, we’ve already met!

Add link to

Error: Please select a workspace before adding link.


Sorry, we don’t support this browser

Asana doesn’t work with the internet browser you are currently using. Please sign up using one of these supported browsers instead.