Secure Sites | Yext Hitchhikers Platform

What You’ll Learn

In this section, you will learn:

• An overview of secure Sites
• The available options to set up secure Sites with Yext

Overview

Secure Sites (or Authenticated Sites) refer to a website that is locked down to only the set of users you want to have access to view it. In Yext, this means a site built on Pages that requires a user to enter credentials in order to access the site.

There are three user authentication options to choose from when creating a secure site in Yext, which are outlined below.

Basic Password Protection

Basic password protection requires a global password in order for a user to access the site. Since the password may be shared with any user, this option is recommended for use cases that don’t require a strong layer of security, but the implementation is the easiest.

OpenID Connect (OIDC)

OIDC is an identity layer that is built on the OAuth 2.0 framework. This is a way to lock down your site to only a set of authenticated users by connecting your Yext Site to an external identity provider, such as Okta. The implementation is more complex, but the security is very high. OIDC is recommended for anyone who already manages their users through Okta or another identity provider.

Yext Identity Provider (IdP)

Yext IdP is a secure site login with Yext that uses OIDC protocol. Using this system, users will log in with their Yext account credentials in order to access your secure site. This is recommended for users looking to manage their site and information entirely through Yext (as the users accessing the site must also have Yext user credentials). It also allows for easy configuration of authorized search experiences and visitor-level analytics.