Aha! presentations contain information about your business — from roadmaps to reports to strategy. You can group your Aha! reports and views together in a presentation, making it easy to share with those who may not be registered Aha! users such as investors, stakeholders, customers, or even other company employees.
When you publish a presentation as a webpage, a secure link is generated that will not be indexed by search engines. You can then share that link as desired with the proper stakeholders.
While all presentations can be password protected or restricted to Aha! users for additional security, two additional enhanced security options are available to Enterprise+ accounts to more easily manage secure access to presentations.
Click any of the following links to skip ahead:
- Protect a presentation with a password
- Presentation security options
- Configuring a SAML identity provider to work with presentations
- IP access controls
Protect a presentation with a password
You may add additional protection by setting a password for a presentation using the Customize presentation button on the upper-left corner of the page. At any time, you can change the password or remove it completely. Users will need to re-enter the password if the password changes.
Presentation security options
Aha! offers several authentication options for presentations, mentioned below. Administrators on an Enterprise+ account can enable presentation single sign-on (SSO) to provision access to presentations separately from Aha! user SSO. This allows separate access control for presentations without needing to be an Aha! user with specific permissions. If enabled, all users will be redirected to log in with the identity provider set via SSO before accessing the presentation.
To configure the account-level presentation security settings, navigate to Settings > Accounts > Security and single-sign-on and scroll down to Enhanced presentation security to select one of the following options:
- Allow anyone to access. There is no account-mandated security requirement for presentations access.
- Allow only Aha! users to access. Only Aha! users can access presentation URLs. If they are not actively logged into Aha! when navigating to the presentations link, these users will have to log in to Aha! again to access the presentation. The specific products and workspaces can be selected to provision Aha! user access from individual presentations.
- Allow only Aha! or single sign-on users to access (Enterprise+ only). Only Aha! users or presentation SSO users can access the presentation URL.
- Allow presentation owners and collaborators to control access on a per-presentation basis (Enterprise+ only). There is no account-mandated security requirement for presentation access, but the SSO settings can be used as an optional per-presentation setting selected by owners or contributors.
If an enhanced security setting has been selected that requires SSO, the additional SAML 2.0 dialogue configuration will display on update. To save changes to presentation SSO settings, click the Update button below the configuration.
If account settings allow for optional SSO or Aha! user access on a per-presentation basis, owners and contributors can control settings for individual presentations by clicking on the Customize presentation icon on the top-left corner of the presentation.
Configuring a SAML identity provider to work with presentations
Some identity providers, like Okta, have built-in applications to work with Aha!. These built-in applications cannot be used with presentations because they are hard-coded to log in only to Aha! itself.
A new generic SAML configuration needs to be created specifically for presentations. This configuration must include an Email attribute that identifies the user who is viewing the presentation.
IP access controls
Enterprise+ customers can also restrict access to presentations through IP access controls. Please note, if IP based access control is configured, this can block any external users wishing to access the presentation from outside of the specified IP addresses.