General

1. Have there been any recent improvements to the Single Sign On (SSO) functionality?
   Yes! Single Sign On (SSO) is like having one key that unlocks many doors. Instead of remembering lots of passwords for different websites or apps, you only need one login for everything at work. It saves time and hassle because you log in once, and then you're automatically signed in to all the places you need to be without typing your password over and over again. The recent SSO modifications bring enhanced functionality and security measures to streamline the user authentication process. These are making the user experience even smoother and more secure. Improvements modified functionality so that a user's last login is updated during SSO logins under User Maintenance. Updating a user's last login during SSO logins not only helps in tracking user activity but also ensures that the system remains up to date with the latest login information. Additional checks were also added to ensure a user isn’t locked before allowing SSO login from Sage ESS and also handling ‘empty’ company/employee IDs in Sage's responses. Adding checks to prevent login attempts for locked users adds an extra layer of security, preventing unauthorized access attempts. Additionally, handling 'empty' company/employee IDs in Sage's responses shows attention to detail, ensuring compatibility and smooth operation even in Edge. Sage ESS is just one implementation example of SSO.
   
   Another implementation of SSO is SAML/SAML2. Security Assertion Markup Language (SAML) is like a special passport for the internet. Instead of giving your username and password to every website you visit, you show your SAML passport once, and it confirms your identity for you. It's a safer and easier way to log in to different websites without having to share your personal information repeatedly. The SAML improvements allow LightWork to work with an external SAML2 identity provider. The integration of SAML improvements to work with an external SAML2 identity provider is a significant step forward. This feature not only expands the flexibility of authentication options for users but also enhances security by leveraging a standardized protocol for identity verification. It's like upgrading from a basic key to a high-tech security system, making sure that only authorized individuals gain access to the system. Overall, these improvements demonstrate LightWork's commitment to providing a more efficient, secure, and user-friendly authentication process for its users.

2. What is the difference between a PIN/ID and a Username/password?
   A Punch ID and a PIN code do not qualify as login credentials for the LightWork System. The ID and Pin only work on a Kiosk. These are created and assigned to an Employee under the Punch User Maintenance.
   
   A Username and password are used to log into the LightWork system, and will not work on a Kiosk. These are created under the User Maintenance.

3. How do I reset a password?
   There are two ways to reset a password.
   
   If you can log into your LightWork account, then you can reset your password.
   
   If you are locked out of your account, HR will need to go into LightWork and unlock the account, then reset the password in the User Maintenance section.

4. LightWork is no longer working with Firefox, what can I do?
   If Mozilla Firefox is no longer working with LightWork, then you may need to download the extended support release.
   
   For any clients using Mozilla Firefox to access any Silverlight-dependent web applications, the next Mozilla update requires the Mozilla Firefox Extended Support Release to be downloaded on individual workstations for Users to continue using Mozilla Firefox to access LightWork.

5. LightWork is not opening in Microsoft Edge, what can I do?
   Sometimes LightWork will stop loading if you have not cleared your cache in a long time. Follow the steps below to learn how to clear your cache in Microsoft Edge.
   
   A shortcut to clear the cache is to press CTRL+SHIFT+DEL or CTRL+SHIFT+FN+DEL while Microsoft Edge is open. Alternatively, for the desktop version of Miscrosoft Edge:

   • Open Microsoft Edge.

   • Select the ellipsis menu (three dots) in the top right-hand corner of the browser.

   • Click on the History option from the menu items.

   • Select the Delete icon, locate in the top right-hand corner of the drop-down menu.

   • Choose 'Browsing history', and 'Cached images & files' to clear the cache. Optionally, also includes 'Cookies and other site data', and 'Download history'.

6. I have synced LightWork with our HR system, but an employee still isn’t showing up.
   There are many possible reasons why the employee(s) are not coming into LightWork:

   • Make sure the employee is not flagged as terminated.

   • Check that all the necessary fields are populated (i.e. SSN).

   • Make sure you have not reached your User limit. If you have, LightWork will alert you during the sync process, and then you will need to reach out to support@lightworksoftware.com to get the threshold bumped up, if you're a named support user for your organization.

   If you have a custom connector, you will need to contact your IT department or LightWork support to see how your employees are being pulled into LightWork.

7. My site has been updated but I don't appear to see the new functionality.
   Sometimes, your browser will 'hang on' to the old version of the application instead of reloading to get the latest files the way it should. Start by pressing CTRL+F5.

8. How do I create global characteristics for all of my Users' passwords?
   This can be modified in the System Options Maintenance (Maintenance > System > System Options > and select the Password tab).
   
   In this section, you can control the password credential settings of your LightWork site. LightWork Administrators can set up global characteristics they'd like to enforce on all their User's passwords. These options are fully customizable to tailor your Users' password security to a desired strength.