Allow list for invitation restrictions

This article explains how to secure your project by using invitation restrictions and the allow list feature. These settings allow you to control who can be invited based on specific email domains and to define an expiration date for invitations.

Manage invitation restrictions

Invitation restrictions enhance security by limiting project invitations to users from specific domains. This ensures that only authorized users can join the project.

🚧
Important
Only the SSO Account Admin can manage these settings.

To access invitation restrictions, go to Project settings > General > Security > Invitation settings.

Set invitation expiration time

You can set an expiration time for user invitations. Once the set time passes, the invitation expires, and users can no longer accept it. You can set the expiration time in days or hours, giving you flexibility based on your security needs.

Limitations

Maximum expiration time: 180 days
Minimum expiration time: 1 hour

Manage domain restrictions

Domain restrictions allow you to limit invitations to users from specific email domains. When you enable this option, only users with email addresses from the allowed domains can get project invitations.

📘
Note
This restriction does not affect users invited before its activation.

To enable domain restrictions:

Toggle the feature on.
Enter up to 10 allowed domains (without the @ symbol, for example, domain.com)

If you invite users with an email domain that is not on the allow list, an error message will appear.

Limitations

Maximum allowed domains: 10
Default domains: You cannot remove Bloomreach-owned domains.

Allow list for invitation restrictions

Manage invitation restrictions

🚧
Important

Set invitation expiration time

Limitations

Manage domain restrictions

📘
Note

Limitations

Manage invitation restrictions

🚧Important

Set invitation expiration time

Limitations

Manage domain restrictions

📘Note

Limitations

🚧
Important

📘
Note