Logging In

Datafi supports several authentication methods, from standard email-and-password login to enterprise single sign-on. This page covers every way you can access the platform.

The primary way to use Datafi is through the web interface.

Email and Password

Open your browser and navigate to home.datafi.us.
Enter the email address you used during registration.
Enter your password.
Select Sign In.

You are taken to the Home page, where you can access Quick Access items, recommendations, and the Action Center.

Stay Signed In

Datafi maintains your session as long as your browser tab remains open and your session token has not expired. If you are on a trusted, private device, you can keep the tab open to avoid repeated logins.

Single Sign-On (SSO)

If your organization has configured SSO, you can sign in using your existing corporate identity instead of a separate Datafi password.

Supported SSO Providers

Provider	Identity Service	Notes
Google	Google Workspace	Uses Auth0 or AWS Cognito as the broker
Microsoft	Microsoft 365 / Azure AD	Uses Microsoft Entra ID (formerly Azure AD)

Navigate to home.datafi.us.
Select the Sign in with Google or Sign in with Microsoft button.
You are redirected to your identity provider's login page.
Authenticate with your corporate credentials (and complete any MFA prompts from your provider).
Upon successful authentication, you are redirected back to Datafi and signed in automatically.

SSO Configuration

SSO must be enabled and configured by your workspace administrator or Datafi account team. If you do not see the SSO buttons on the login page, contact your administrator to set it up.

Identity Brokering

Datafi integrates with the following identity services to broker SSO authentication:

Auth0 -- used for flexible identity federation across multiple providers.
AWS Cognito -- used for organizations that standardize on AWS identity services.
Microsoft Entra ID -- used for direct Microsoft 365 and Azure AD integration.

Your administrator selects the appropriate broker during workspace configuration. As an end user, you simply click the SSO button and authenticate through your provider -- the brokering happens transparently.

Multi-Factor Authentication (MFA)

Datafi supports multi-factor authentication through your SSO identity provider. When MFA is enabled at the provider level, Datafi inherits and enforces it during every login.

How MFA Works with Datafi

You initiate SSO login from home.datafi.us.
Your identity provider (Google or Microsoft) prompts you for your primary credentials.
Your identity provider prompts you for a second factor (authenticator app, SMS, hardware key, etc.).
Once both factors are verified, you are redirected back to Datafi.

Enforce MFA at the Provider Level

Datafi does not have its own standalone MFA mechanism. To require multi-factor authentication for your team, configure and enforce MFA in your Google Workspace or Microsoft 365 / Entra ID admin console. This ensures that every Datafi login is protected by a second factor.

Recommended MFA Methods

Method	Security Level	Notes
Hardware security key (FIDO2/WebAuthn)	Highest	Phishing-resistant; recommended for admins
Authenticator app (TOTP)	High	Google Authenticator, Microsoft Authenticator, etc.
Push notification	High	Available through Microsoft Authenticator and similar apps
SMS code	Moderate	Better than no MFA, but vulnerable to SIM-swap attacks

Programmatic Access Methods

In addition to the web interface, Datafi provides several programmatic access paths for integration, automation, and analytics workflows.

ODBC Clients

Use the Datafi ODBC driver to connect business intelligence tools and desktop applications directly to your federated data.

Authentication: Provide your Datafi credentials or an API token in the ODBC connection string.

Common use cases:

Connecting Tableau, Power BI, or Looker to Datafi.
Running federated queries from Excel.
Building reports in third-party BI platforms.

Command-Line Interface (CLI)

The Datafi CLI allows you to authenticate, run queries, and manage resources from your terminal.

Authentication: Log in with your credentials or configure an API token for non-interactive use.

# Example: authenticate with the CLI
datafi login --email [email protected]

SDK

Embed Datafi operations in your application code using the SDK. The SDK handles authentication, query execution, and result handling.

Authentication: Pass your API token or configure environment variables for credential management.

# Example: initialize the SDK with an API token
import datafi

client = datafi.Client(api_token="your-api-token")
results = client.query("SELECT * FROM sales.orders LIMIT 10")

API Tokens for Automation

For CI/CD pipelines, scheduled scripts, and other non-interactive workflows, use API tokens instead of interactive login. Tokens can be scoped, rotated, and revoked without affecting your primary credentials.

Issue	Resolution
Incorrect password	Use the Forgot Password link on the login page to reset your password.
SSO button not visible	SSO must be configured by your workspace admin. Contact them for setup.
SSO redirect fails	Ensure pop-ups are allowed for `home.datafi.us` and your identity provider domain.
Account locked	Too many failed attempts may lock your account. Wait a few minutes or contact your admin.
MFA prompt not appearing	Verify that MFA is enabled in your identity provider's admin console.
Session expired	Sign in again. Sessions expire after a period of inactivity for security.

Next Steps

Now that you know how to sign in, take the Quick Tour to familiarize yourself with every major page in the Datafi interface.

Web Login​

Email and Password​

Single Sign-On (SSO)​

Supported SSO Providers​

How to Sign In with SSO​

Identity Brokering​

Multi-Factor Authentication (MFA)​

How MFA Works with Datafi​

Recommended MFA Methods​

Programmatic Access Methods​

ODBC Clients​

Command-Line Interface (CLI)​

SDK​

Troubleshooting Login Issues​

Next Steps​

Web Login