> ## Documentation Index
> Fetch the complete documentation index at: https://withforerunner.com/docs/llms.txt
> Use this file to discover all available pages before exploring further.

# Overview

> Sign in to Forerunner and secure your account

Authentication in Forerunner ensures only authorized users can access your organization's data. Forerunner supports multiple sign-in methods and security features to protect your account.

<CardGroup cols={2}>
  <Card title="Signing in" icon="log-in" href="/administration/authentication/signing-in">
    Access your account with password or SSO
  </Card>

  <Card title="Single sign-on" icon="key" href="/administration/authentication/sso">
    Sign in through your organization's identity provider
  </Card>

  <Card title="Multi-factor authentication" icon="shield-check" href="/administration/authentication/mfa">
    Add SMS verification for extra security
  </Card>

  <Card title="Password management" icon="lock" href="/administration/authentication/passwords">
    Reset, change, and manage your password
  </Card>
</CardGroup>

## Sign-in methods

Forerunner supports two authentication methods:

| Method                   | Description                                           | Best for                                               |
| ------------------------ | ----------------------------------------------------- | ------------------------------------------------------ |
| **Password**             | Sign in with email and password                       | Organizations without centralized identity management  |
| **Single sign-on (SSO)** | Sign in through your organization's identity provider | Organizations using Azure AD, Okta, or similar systems |

Your sign-in method is determined by your account configuration. Some organizations use password authentication, others use SSO, and some support both.

## Security features

### Multi-factor authentication

MFA adds an extra layer of security by requiring a verification code in addition to your password. When enabled, you'll receive an SMS code to your phone during sign-in.

Learn more about [multi-factor authentication](/administration/authentication/mfa).

### Session management

Forerunner protects your sessions through:

* **Automatic timeout** - Sessions expire after a period of inactivity
* **Secure tokens** - Sessions authenticated with secure, randomly generated tokens
* **Lockout protection** - Accounts locked after failed sign-in attempts

### Account security

* **Password encryption** - Passwords stored securely using one-way encryption
* **Failed attempt protection** - Accounts locked after too many failed attempts
* **Audit logging** - Sign-in activity tracked for security monitoring

## First-time sign-in

When you're invited to Forerunner:

1. You receive an invitation email with a setup link
2. Click the link to create your password
3. Complete your profile information
4. Sign in with your new credentials

Learn more about [signing in](/administration/authentication/signing-in).

## Getting help

### Locked out?

If you can't access your account:

* **Forgot password** - Use the password reset link on the sign-in page
* **Account locked** - Wait for the lockout period to expire, then try again
* **SSO issues** - Contact your IT department to verify your organization's SSO is working

### Need access changes?

* **Different sign-in method** - Contact your Customer Success Manager
* **MFA setup or reset** - Contact your Manager
* **New account** - Ask your Manager to send an invitation

## Related topics

* [User roles](/administration/user-roles) - Permission levels and access control
* [Account settings](/administration/account-settings) - Manage your profile
* [Data security](/administration/data-security) - How Forerunner protects your data
