Accessing your account

To access Diligent HighBond or download other Diligent products and resources, sign in at highbond.com.

How you sign in depends on your organization's authentication method.

  • Standard authentication Most cases, including using two-factor authentication.
  • Custom domain If your organization uses single sign on (SSO), you authenticate using a custom domain.

Permissions

Any user added to Launchpad can sign in to HighBond.

Sign in with standard authentication

You are using standard authentication if you are not signing in through SSO, even if you need to use two-factor authentication (2FA).

Receiving your invitation

Once your HighBondSystem Admin has added you to Launchpad, HighBond will send you an invitation email. You must accept your invitation within 30 days or it will expire. If it does expire, HighBond will show you an error when you try to sign in: "The invitation token provided is not valid!" Ask the person who invited you to HighBond to resend the invitation, which generates a new link for you.

Signing in

After you have activated your account by clicking the link in the invitation email, you can sign in.

  1. Go to www.highbond.com.
  2. Enter your Launchpad credentials (e-mail and password) to sign in. HighBond includes a security setting that determines the number of password attempts allowed. For more information, see Diligent Security.
  3. Click Sign in.
  4. If two-factor authentication (2FA) is enabled:
    1. If you have not set up 2FA on your account, you must set up 2FA before you can access HighBond.
      1. Click Start setup.
      2. Follow the directions on the screen to download an authenticator app on your mobile device, scan the bar code, and enter your verification code.
      3. Click Enable. 2FA is now set up on your account. You will need to enter your one time code each time you log in.
    2. If you have already set up 2FA, enter your code from your authenticator app, then click Sign in.

Sign into a custom domain

Note

If your organization uses a custom domain, do not enter an email and password on the first screen of the Launchpad sign-in screen.

  1. Go to www.highbond.com.
  2. Click Sign in to a custom domain.
  3. Enter your organization's custom domain to sign in.

    If you do not know your custom domain, contact the HighBond System Admin in your organization.

  4. Click Continue.

Two-factor authentication (2FA) explained

Your System Admin may enforce a requirement that you use two-factor authentication (2FA) to access HighBond.

What 2FA is for

2FA is an extra layer of security. It ensures that when someone tries to access your account, that person is actually you. This second "factor" is some identifying piece of information that only you know or have. In some places, this could be as complex as a fingerprint or iris scan. In HighBond, it is less cool than that. We just ask you for an authentication code, also known as a time-based one-time password (TOTP). It's a unique, temporary password generated with an algorithm using an app on your mobile device.

Why we need 2FA

Passwords are not fool-proof. By themselves, they rarely constitute strong security.

  • People choose weak passwords that can easily be guessed. Examples include "password" and "123456".
  • People fall victim to social engineering or phishing attacks, unknowingly giving their password to someone else.
  • People reuse the same password in many places. If one of their accounts is compromised, all of their accounts are compromised.

When dealing with sensitive organizational information, which HighBond often contains, that information needs to be protected more securely.

Choosing an authenticator app

There is a good chance you already use 2FA somewhere else. If so, you probably already have an authenticator app. If you have never used an authenticator app before, you need to download one on your mobile device. HighBond's 2FA is compatible with the majority of authenticator apps that can provide a time-based on time passcode (TOTP). If your organization doesn't endorse any particular app, pick whichever one seems best to you. We have tested on the following apps and know they work, but others should work too.

  • Google Authenticator
  • Microsoft Authenticator
  • Cisco Duo Mobile
  • Okta Verify
  • Auth0 Guardian
  • LastPass Authenticator

Once you have your authenticator app installed, you can sign in to HighBond as you normally would. The login screen will walk you through the process to set up 2FA on your HighBond account.

If you lose your mobile device

If you lose your mobile device, your System Admin can unregister your device. You will need to repeat the registration process again, using your new mobile device, to sign into HighBond.

If you do not have a mobile device you can register

Talk to your System Admin about alternative options for your second authentication factor.