Accessing your account

To access the Diligent One Platform or download other Diligent products and resources, sign in at highbond.com.

How you sign in depends on your organization's authentication method.

  • Standard authentication Most cases, including using two-factor authentication.
  • Custom domain If your organization uses single sign on (SSO), you authenticate using a custom domain.

Permissions

Any user added to Launchpad can sign in to Diligent One.

Sign in with standard authentication

You are using standard authentication if you are not signing in through SSO, even if you need to use two-factor authentication (2FA).

Receiving your invitation

Once your Diligent OneSystem Admin has added you to Launchpad, Diligent One will send you an invitation email. You must accept your invitation within 30 days or it will expire. If it does expire, Diligent One will show you an error when you try to sign in: "The invitation token provided is not valid!" Ask the person who invited you to Diligent One to resend the invitation, which generates a new link for you.

Signing in

After you have activated your account by clicking the link in the invitation email, you can sign in.

  1. Go to www.highbond.com.
  2. Enter your Launchpad credentials (e-mail and password) to sign in. Diligent One includes a security setting that determines the number of password attempts allowed. For more information, see Diligent Security.
  3. Click Sign in.
  4. If two-factor authentication (2FA) is enabled:
    1. If you have not set up 2FA on your account, you must set up 2FA before you can access Diligent One.
      1. Click Start setup.
      2. Follow the directions on the screen to download an authenticator app on your mobile device, scan the bar code, and enter your verification code.
      3. Click Enable. 2FA is now set up on your account. You will need to enter your one time code each time you log in.
    2. If you have already set up 2FA, enter your code from your authenticator app, then click Sign in.

Sign into a custom domain

Note

If your organization uses a custom domain, do not enter an email and password on the first screen of the Launchpad sign-in screen.

  1. Go to www.highbond.com.
  2. Click Sign in to a custom domain.
  3. Enter your organization's custom domain to sign in.

    If you do not know your custom domain, contact the Diligent One System Admin in your organization.

  4. Click Continue.

Two-factor authentication (2FA) explained

Your System Admin may enforce a requirement that you use two-factor authentication (2FA) to access Diligent One.

What 2FA is for

2FA is an extra layer of security. It ensures that when someone tries to access your account, that person is actually you. This second "factor" is some identifying piece of information that only you know or have. In some places, this could be as complex as a fingerprint or iris scan. In Diligent One, it is less cool than that. We just ask you for an authentication code, also known as a time-based one-time password (TOTP). It's a unique, temporary password generated with an algorithm using an app on your mobile device.

Why we need 2FA

Passwords are not fool-proof. By themselves, they rarely constitute strong security.

  • People choose weak passwords that can easily be guessed. Examples include "password" and "123456".
  • People fall victim to social engineering or phishing attacks, unknowingly giving their password to someone else.
  • People reuse the same password in many places. If one of their accounts is compromised, all of their accounts are compromised.

When dealing with sensitive organizational information, which Diligent One often contains, that information needs to be protected more securely.

Choosing an authenticator app

There is a good chance you already use 2FA somewhere else. If so, you probably already have an authenticator app. If you have never used an authenticator app before, you need to download one on your mobile device. Diligent One's 2FA is compatible with the majority of authenticator apps that can provide a time-based on time passcode (TOTP). If your organization doesn't endorse any particular app, pick whichever one seems best to you. We have tested on the following apps and know they work, but others should work too.

  • Google Authenticator
  • Microsoft Authenticator
  • Cisco Duo Mobile
  • Okta Verify
  • Auth0 Guardian
  • LastPass Authenticator

Once you have your authenticator app installed, you can sign in to Diligent One as you normally would. The login screen will walk you through the process to set up 2FA on your Diligent One account.

If you lose your mobile device

If you lose your mobile device, you can unregister your device from 2FA. Alternatively, a System Admin can unregister devices on behalf of other users. Once unregistered, you will need to repeat the registration process, using your new mobile device, to sign into Diligent One.

If you do not have a mobile device you can register

Talk to your System Admin about alternative options for your second authentication factor.