Are you receiving SNAP/EBT benefits? The Expensify.org/SNAP-VAX campaign is live and accepting new members. Learn more about receiving $50 for submitting a SNAP receipt and $50 for getting your COVID-19 vaccine here and join today!
Enforce SSO to use SAML only, prevent use of secondary accounts for domains
One reason we leverage SSO is pass off authentication and MFA to our IDP, Google. By doing so, users logging into Expensify will be subject to the Google password and account policies.
If we don't have an ability to restrict the ability for user accounts within our company's domain to create a secondary account, this creates a large security gap. Would love to see the ability to restrict the based on domains/groups.