Please wait...
Edit authenticators allowed by your organisation
As an organisation administrator, you can modify the settings regarding how users should log in or sign on behalf of the organisation.
This page is relevant for:
- organisation administrator
All users must have an authenticator, such as the MitID app, to verify their identity when logging in or signing digitally on behalf of the organisation.
The organisation administrator decides which authenticators can be used by users to log in or sign on behalf of the organisation.
Rights administrators and user administrators can only view the settings.
How to modify authenticators your organisation allows
Find "Settings": Menu > Settings.
Once tapped, the settings for authenticators will expand.
In the "Authenticators" menu, you can select which authenticators your organisation will allow when users in your organisation log in or sign on behalf of the organisation. Read more about the 4 authentication methods you need to consider in the next section.
4 authentication methods to consider
A private MitID is the MitID used by users when they log in as private individuals, for example, to access borger.dk or Skat.
You must decide whether users in your organisation should be able to log in and sign on behalf of the organisation using their private MitID. The user's private data is entirely separate from the organisation’s data.
Read more about private MitID:
A separate MitID is a MitID used solely for business purposes. It is a new MitID that your users will only use when acting digitally on behalf of your organisation. This means users will be assigned a new MitID user ID, which they must enter when logging in or signing on behalf of the organisation.
Use of a separate MitID for business purposes must always be allowed in all organisations. This means you do not need to make a decision about the use of separate MitID. Instead, you should choose which MitID authenticators your organisation offers:
- MitID app: An app where you can swipe and approve using MitID on your smartphone or tablet.
- MitID chip: A physical device that is particularly useful for users who need to log in frequently throughout the day.
- MitID code display: A physical device that generates a new code for each action that needs approval.
- MitID audio code reader: A physical device similar to the code display, where a unique code is generated and read aloud by the device.
Once you have selected which MitID authenticators you will offer your users, you must decide if users are allowed to use these methods to log in on behalf of other organisations.
Read more about separate MitID:
A user with a separate MitID can use the same MitID user ID and authenticator across 2 or more organisations, provided all organisations allow it. This is known as a shared credential.
Here, you must decide whether users are allowed to log in with a separate MitID issued by another organisation.
The data of organisations is always kept separate.
Please note that under "Separate authenticators”, you have already determined whether users can use authenticators issued by your organisation when acting on behalf of another organisation.
Local authenticator are your organisation’s own authenticator that users in your organisation use to log into the organisation's own systems.
The section “Local identity providers” will only appear if your organisation has been set up as a Local IdP:
You can choose whether your organisation allows users in your organisation to use your organisation's authenticators instead of MitID authenticator when they log in and sign on behalf of the organisation in self-services.
Related topics
As an administrator, you can access guides for the following within the organisation's settings in MitID Erhverv:
Modify how your organisation receives invoices from MitID Erhverv
Modify settings for creating users
As an administrator, you can also find guides for the following topics: