Logging in to the web interface

This page provides a step-by-step guide on how to access the Nexthink web interface with your:

  • Corporate single sign-on (SSO) if your administrator has enabled the Security Assertion Markup Language (SAML) authentication or Windows for users.

  • Nexthink account if an external authentication mechanism is not available.

Prerequisites

You must have a Nexthink account to access the web interface.

Log in with corporate SSO

  1. Open your web browser.

  2. In the address bar, type the Nexthink instance Fully Qualified Domain Name (FQDN), as follows:

    • <instance>.<region>.nexthink.cloud

    • <instance>.data.<region>.nexthink.cloud FQDN description:

      • <instance> - Name of the Nexthink instance

      • <region> - Name of the instance localization:

        • us - United States

        • eu - European Union

        • pac - Asia-Pacific region

        • meta - Middle East, Turkey, and Africa

    • Example: https://kanopy.eu.nexthink.cloud

  3. The web interface redirects you to your corporate SSO login page.

Log in with local Nexthink account

Nexthink is progressively deploying Multi-factor authentication (MFA) for local Nexthink accounts. MFA may not yet be available on your tenant.

  1. Access the standard local login page using the FQDN including /login at the end, as follows:

    • <instance>.<region>.nexthink.cloud/ FQDN description:

      • <instance> - Name of the Nexthink instance

      • <region> - Name of the localization of the instance:

        • us - United States

        • eu - European Union

        • pac - Asia-Pacific region

        • meta - Middle East, Turkey, and Africa

    • Example: https://kanopy.eu.nexthink.cloud/login

  2. Enter the following in the relevant fields:

    • Username

    • Password

    • MFA code

  3. Optional step. Select the Remember this device checkbox to automatically log in next time.

  4. Select Sign in.

Multi-factor authentication overview

Multi-factor authentication (MFA) adds an extra layer of security to your Nexthink tenant by requiring local users to provide multiple forms of identification before granting access.

MFA includes the following components:

  • Something the user knows, such as a password.

  • A Time-Based One-Time Password (TOTP) that is generated by an application, such as Google Authenticator or Microsoft Authenticator.

The user must use both components during login.

Enable MFA to significantly enhance protection against unauthorized access, data breaches and identity theft. Use MFA to reduce the risk of credential theft, phishing attacks and brute force attacks, to safeguard user accounts and sensitive information on your platform. Overall, MFA is a crucial security feature that reinforces the integrity of your Nexthink tenant and ensures a safer user experience.

Use MFA for local accounts

If MFA is enabled for local accounts on your tenant, you may also have to perform one of the following procedures.

MFA is not set up for the currently active account

  1. Install an authenticator application on your mobile device or on a computer that supports TOTPs, for example, Google Authenticator, Microsoft Authenticator, 1Password and so on.

  2. Select Multi-factor authentication (MFA).

  1. Scan the QR code with your authenticator application.

  1. Enter the code provided by your authenticator application.

  1. Select Continue.

  2. Select Finish when the code is validated and the setup is complete.

MFA is already set up for the currently active account

  1. Enter the code provided by your authenticator application.

  2. Select Sign in.

Configure MFA

Authenticator application is still available

Perform the following steps to reconfigure MFA when you still have access to the old authenticator application. For example, to transfer MFA from an existing mobile device to a new one.

  1. Access the standard local login page using the FQDN as follows: <instance>.<region>.nexthink.cloud

  2. Enter your username and select Continue.

  3. Enter your password and select Continue.

  4. Select Sign in.

  5. Enter the code provided by your original authenticator application.

  6. Select Verify.

  7. Go to the My Account page.

  8. Select Reset multi-factor authentication (MFA).

  9. Select Yes.

  10. Select Sign out from the My Account menu.

  11. Enter your username and select Continue.

  12. Enter your password and select Continue.

  13. Scan the QRCode with your authenticator application.

  14. Enter the code provided by your authenticator application and select Continue.

Authenticator application is unavailable

If you need to reconfigure MFA but do not have access to the mobile device, for example, the mobile device is lost, contact your Nexthink Administrator to request an MFA reset.

Last updated

#451: 2024.8-Overview of integration DOC

Change request updated