Logging in to Cyrisma

Last updated: February 3, 2026

Cyrisma is a multi-tenant cybersecurity platform designed for Managed Service Providers (MSPs) and their clients. Depending on a user’s role, there are two different ways to log in to Cyrisma. This article explains where to log in, which credentials to use, how authentication works, and how Multi-Factor Authentication (MFA) is applied.

Understanding Cyrisma Login Types

Cyrisma supports two login paths, each serving a different purpose:

User Type

Login Location

Purpose

MSP Users

https://msp.cyrisma.com

Manage multiple customer instances and access them via SSO

Client Users

https://<customer-instance>.cyrisma.com

Access a single customer environment

Client users do not log in to the MSP portal.

Logging in as an MSP User

Where to Log In

https://msp.cyrisma.com

Who Uses This Login

MSP users include:

  • MSP administrators

  • MSP analysts

  • MSP operational users

MSP accounts are initially created by the Cyrisma onboarding team.

Credentials

  • Username: Email address

  • Password: Defined when the account is created or reset

Once authenticated, MSP users can view and manage all customer instances assigned to their organization.

Accessing Client Instances (Single Sign-On)

From the MSP portal:

  1. Select a customer organization.

  2. Click Go to Instance.

You will be logged directly into the client’s Cyrisma instance without re-entering credentials.

This single sign-on (SSO) flow relies on the MSP user’s authenticated session and does not require a separate client user account.

Logging in as a Client User

Where to Log In

Client users log in directly to their assigned Cyrisma instance:

https://<customer-instance>.cyrisma.com

Example:
https://cc123456.cyrisma.com

Who Uses This Login

  • End-customer administrators

  • End-customer analysts

  • Client security or IT staff

Client user accounts are created and managed by the MSP.

Credentials

  • Username: Instance-specific username (not an email address)

  • Password: Defined during account creation or password reset

Client users cannot log in to the MSP portal.

Credentials

  • Username: Instance-specific username (not an email address)

  • Password: Defined during account creation or password reset

Client users cannot log in to the MSP portal.

Password Requirements

All Cyrisma users must set passwords that meet the following requirements:

  • Minimum 8 characters

  • At least one uppercase letter

  • At least one lowercase letter

  • At least one digit

  • Special characters are allowed but not required

  • Spaces are not permitted

Multi-Factor Authentication (MFA)

MFA provides an additional layer of security by requiring a time-based or email-based verification step during login.

How MFA Is Configured

MFA can be configured at two different levels, depending on the user type and login path.

MSP Organization-Level MFA

MSP organizations can configure MFA for MSP users in the MSP portal:

MSP Portal → Organization Details → Update

This configuration applies to:

  • MSP users logging in to the MSP portal

  • MSP users accessing customer instances via single sign-on (SSO)

All customer instances accessed through SSO inherit this MFA requirement for MSP users.

MSP Organization-Level MFA Options

When MFA is configured at the MSP organization level, the following options are available:

  • None

  • Email Code

  • Authenticator App (time-based passcode)

These options apply to:

  • MSP users logging in to the MSP portal

Instance-Level MFA

Each client instance can independently configure MFA for client users.

Instance administrators can enable MFA within their specific Cyrisma instance by navigating to:

Admin → System Config → Two-Factor Authentication

This configuration applies only to:

  • Client users logging directly into that instance

Instance-level MFA does not affect MSP users accessing instances via single sign-on (SSO).

Instance-Level MFA Options

When MFA is configured at the instance level, the following options are available:

  • None

  • Email Code

  • Authenticator App (time-based passcode)

These options apply to:

  • Client users logging directly into the instance

Role Behavior

  • If MFA is enabled at the MSP organization level, it applies to all MSP users.

  • If MFA is enabled at the instance level, it applies to all client users for that instance.

  • MSP and client MFA configurations are managed independently.

Password Reset & Account Recovery

Forgot Password

A Forgot Password link is available on:

  • The MSP login page

  • Client instance login pages

Reset Process

  • Password resets are self-service

  • A reset link is sent via email

  • No administrator intervention is required

Session Timeout Behavior

MSP Portal

  • Automatic logout after 30 minutes of inactivity

Client Instances

  • Configurable per instance

  • Location:

    Admin → System Config

  • User Inactivity Timeout can be set between 10 and 90 minutes

Common Login Issues

Issue

Recommended Action

Invalid credentials

Verify username format (email vs instance username)

Cannot access MSP portal

Confirm you are an MSP user

Client user cannot log in

Verify instance URL and account exists

MFA prompt unexpected

Check organization MFA settings

Session expired

Log in again after inactivity timeout

Summary

  • MSP users log in at msp.cyrisma.com using an email address.

  • Client users log in directly to their assigned instance using a username.

  • MSPs can access client instances via SSO.

  • Password resets are self-service.

  • Session timeouts are enforced for security.