CAPABILITIES
Company Type
Topics
- All Asana features
- You’ve been invited to Asana; now what?
- Navigating Asana
- Different types of tasks
- Set up your ideal workspace
- How to use Asana help resources
- Asana desktop app
- Create tasks in Asana
- Collaborating in Asana
- Quick-start guide to Asana
- Getting started with Asana’s mobile app
- How Asana works
- Create projects in Asana
- Top features to discover
- New navigation in Asana
- Structure your projects clearly
- Assign tasks to teammates
- Comments, messages, and status updates
- Powerful Asana features for work management
- Stay informed with your Asana Inbox
- Maximize productivity with My tasks
- Create projects quickly with templates
- Manage and prioritize your tasks
- Automate and scale your work with the Customize menu
- Find work fast with search
- Connect your tools with Asana
- How to invite team members to Asana
- Reporting with dashboards
- Monitor initiatives and track work with portfolios and dashboards
- Reporting with workload
- Tracking project progress
- Top Asana integrations
- Planning with Asana calendar
- Asana for team leads
- Setting and tracking progress towards goals
- How to choose the right project blueprint for your work
- Plan and execute projects with a deadline
- Customize your projects and portfolios
- Share project updates
- How to cancel your Asana trial
- How to add payment details to a trial
- Make the most of your Asana trial
- My trial has ended, what happens to my tasks, rules, and workflows?
- How to sign up for a free Asana trial
- Purchasing a subscription after a trial
- Set goals during your Asana trial
- Turn your trial into a paid plan
- Invite others during your trial
- Add movement to your workflow
- Multi-home tasks to avoid information silos
- What is a workflow?
- Automate how work moves through stages
- Build the foundation of your workflow
- Assign work automatically with custom fields
- Use dependencies to kick work off at the right time
- Request a task review with a simple automation
- Control how tasks are added to projects
- Building cross-functional workflows in Asana
- Moving your everyday workflows to Asana
- Schedule tasks based on priority
- Form customization
- Task Templates
- Custom fields
- Formula custom fields
- Bundles
- Time tracking in Asana
- Dependency types
- Forms
- Email communication with form submitters
- Filtering and sorting custom fields
- ID custom fields
- Field mapping in forms
- Manual rule triggers
- Rule permissions
- Applying bundles to projects
- Rule actions
- Sharing a form
- Variables in rules
- Setting dates in rules
- Management dashboard for project templates
- Rule execution history
- Rule triggers
- Bundles FAQ
- Bundle management and permissions
- Management dashboard for global fields
- Reference custom fields
- Auto-shifting dates for dependent tasks
- Custom field types and limitations
- How to export all time entry data from Asana as CSV via API
- Conditions and branching in rules
- Approvals
- Workflow builder
- Project templates
- Task dependencies
- Rules
- Rules integrations for cloud storage and file sharing
- PagerDuty rules integration
- Rules integrations for productivity and communication
- HubSpot rules integration
- Rules integrations and widgets
- Microsoft Teams and Asana integration
- Asana for Outlook add-in
- Asana for Gmail add-on
- Zoom meetings in Asana
- Asana for Tableau integration
- Power BI integration
- Google Sheets & Asana
- Google and Asana
- Google Forms and Asana
- GitHub and Asana integration
- Calendars and Asana
- Google Calendar + Asana
- Google Smart Chips
- Instagantt + Asana
- Zapier and Asana
- Vimeo and Asana
- Chrome Extension + Asana
- Asana for Jira Cloud FAQ
- Zoom transcripts for automation and AI Studio
- How to create a Zoom call notes workflow with AI Studio
- Enabling permissions for Asana-built and Microsoft 365 integrations
- Outlook Calendar and Asana
- Tray.io + Asana
- ServiceNow & Asana
- Wufoo and Asana
- Web forms & Asana
- Zendesk integration
- Asana for Jira Cloud
- Asana and Workplace from Meta
- Splunk + Asana
- Salesforce in Asana integration
- Asana in Salesforce AppExchange (being deprecated)
- API
- Asana app in Claude
- Asana app in ChatGPT
- Migrating time tracking data from Everhour to Asana
- Compliance management: API and integration support
- Slack and Asana
- Asana for Adobe Creative Cloud
- Jira Data Center
- Jira Data Center FAQ
- Progress, status, and connecting work to goals
- Goal types and templates
- Goals strategy map
- Write great goals with Asana Goals
- Weighted goals
- Viewing and filtering your goals
- Asana Goals FAQ
- The goal tracking process with Asana Goals
- Lead the goals management process in your organization with Asana Goals
- Goals privacy and sharing
- Get started with Asana Goals
- Email tasks to Asana
- Task actions
- My Tasks
- Scheduling tasks using start dates, due dates, and times
- Text formatting in Asana
- Task fields
- Rules in My tasks
- Converting tasks into projects
- Views in My tasks
- Custom fields in My tasks
- Save time in Asana
- Understanding tasks
- Subtasks
- Task comments and attachments
- Tags
- Custom task types and statuses
- Proofing
- Preparing data for CSV import
- Sections
- Gantt view
- Import data from other tools to projects in Asana
- Understanding projects
- Timeline
- Notes view
- Calendar view
- List view
- Project overview tab
- Managing tasks and dependencies with timeline
- Project owner and members
- Files view
- Critical path on timeline
- Project customization and views
- Gantt view FAQ
- Embedded media project view
- Advanced CSV import options
- Board view
- Shareable notes in Asana
- Project importing and exporting
- Teamless projects
- Project permissions
- Permissions overview
- Read-only links
- Task permissions
- Project privacy settings
- Custom field access levels
- Team sharing
- Forms access permissions
- Edit restriction on custom field values
- Private custom fields
- Asana custom field permissions
- Project admin access level
- Viewer project access level
- Team content permissions for team admins
- Domain-wide admin controls
- Sharing and limiting access to teams
- Team permissions
- Editor access level
- Individual project permissions
- Asana for Agile and Scrum
- Asana for team meetings
- Pipelines
- Ideas and brainstorms
- End-of-month close processes for Finance teams
- Giving feedback and approvals
- How to apply a RACI Matrix in Asana
- Project intake
- Organizational strategic planning
- Resource planning
- Plan and manage company goals
- Using Asana to track customer feedback
- One-on-ones
- Using Asana for project management
- Using Asana for your product roadmap
- Asana for Sales and Account Management teams
- How to use Asana for account tracking
- Video production calendar
- Marketing strategic planning
- Event planning with Asana
- How to create a content calendar in Asana
- Campaign management
- Creative production
- Managing design feedback and critique meetings
- Words to workflows in AI Studio
- Work smarter with Asana AI
- AI Studio FAQ
- AI Studio Plus
- Connect your Smart workflow with the right data sources
- AI Studio models
- Writing instructions in AI Studio
- How to structure a prompt in AI Studio
- Create Smart workflows with AI Studio
- AI Studio pre-built AI rules
- How the Use AI variable works
- Troubleshooting in AI Studio
- AI Studio - Human in the loop
- An admin's guide to AI Studio
- Introduction to Asana AI Studio
- AI Studio credit optimization
- AI Studio add-on and pricing
- eDiscovery Resource Center
- Multi-org deployment
- Mandatory two-factor authentication
- Enterprise Key Management (EKM)
- Asana EU Data Centre
- HIPAA Compliance
- Asana and Global Trade Compliance
- How to access the admin console
- Privacy and security
- Two-factor authentication
- Accounts
- Service accounts
- Setting SAML group mapping for licenses
- Multiple accounts and merging
- Data retention policy
- Asana account email policy
- Delete your Asana account
- Managing password settings in the admin console
- SAML group mapping and SCIM interaction
- IP allowlisting in Asana
- Compliance management add-on
- FedRAMP Compliance
- Permissions management add-on
- Global authentication settings
- Automatic guest removal
- Mobile apps security permissions
- Understanding user role permissions
- App management and integrations
- Asana Japan Data Center
- SecureAuth for Enterprise Organizations
- Profile field editability controls
- Claiming admin permissions on work items
- Provisioning and deprovisioning users with SCIM
- Asana IP address ranges and hostnames
- Admin security controls
- Admin and super admin roles in Asana
- Role-based access control (RBAC) with custom roles
- How to separate Asana accounts
- Data Residency for Asana
- Setting up Asana roles in Microsoft Entra ID with SCIM
- Authentication and access management options for paid plans
- Setting up Asana roles in Okta with SCIM
- Access and permissions
- Your Asana account
- Managing an organization
- University organizations
- Managing people in organizations
- Managing teams through the admin console
- Managing organization settings
- A guide to divisions in Asana
- Asana Sandboxes
- Workspaces and organizations FAQ
- Advanced division management
- Division access and management FAQ
- Manage approved workspaces
- Membership and collaboration in workspaces
- Managing members in an organization
- Understanding workspaces
- Managing workspaces
- Managing members and teams in a division
- License assignment in divisions
- Introducing Asana Gov
- Payments in CAD and KRW currency
- Payments in MXN and BRL currency
- Norway VAT
- New Zealand GST
- Indonesia VAT
- Iceland VAT
- EU VAT
- Changes to automatic payments in India due to RBI regulations
- Australia GST
- Adding payment methods for manually invoiced customers
- Upgrading or changing your Asana plan
- United Kingdom VAT
- United States sales tax
- Switzerland VAT
- South Korea VAT
- South Africa VAT
- Singapore GST
- VAT/GST & Sales Tax
- Accessing your billing page
- Payment methods and invoices
- Billing settings in the admin console
- Billing
- Subscription management and upgrades
- Philippines VAT
- Canada GST/HST, QST, and provincial sales tax
- Security and billing for divisions
- How to cancel your Asana plan
- Learn about Asana Premium features
- Learn about Asana Legacy Enterprise features
- Divisions
- Learn about Asana Starter features
- Learn about Asana Advanced features
- Modify your Asana plan
- Manage your growing Asana subscription
- Learn about Asana Business features
- Asana Personal Plan details
- Pricing and purchases
- Asana for nonprofits
- Asana subscriptions and pricing
- View only
- Troubleshooting browser and connectivity issues
- Accidental deletion
- Tasks and subtasks
- Security and permissions
- Navigation and display
- Upcoming discontinuation of personal projects spaces
- Asana Forum basics
- Salesforce AppExchange Integration Deprecation FAQ
- Asana Certification FAQ
- How do I get support from Asana?
- Recover deleted tasks, projects, and more
Authentication and access management options for paid plans
By default, Asana's regular authentication steps apply, and your organization members have the choice to either use a traditional password or Google SSO to log into their respective accounts.
In paid organizations, super admins can select how their members log into Asana, set password complexity requirements and force reset all members' passwords. If you purchase a division plan on Enterprise, Enterprise+, then SAML can also be enabled. SAML can also be enabled for divisions on the Legacy Enterprise tier.
Paid authentication settings only apply to your organization members. Organization guests are not affected by your authentication settings.
Like what you see? Get started with a free Asana trial today. Try for free.
Password strength and force password reset
Google Sign-In
If your company uses Google Workspace for business or education, and you are using a paid version of Asana, you have the option to require your members to authenticate via Google.
Note
You can't set up Google Sign-In if you are on a Division Plan.
To change your organization to Google Sign-In, navigate to the Security tab in the admin console. From here, go to the Global authentication settings and click Google sign-in. Select Required for all members, except guests and click Save changes.
Once this change has been saved, any passwords associated with your members' Asana accounts will no longer work and they will be required to use Google SSO.
If you are changing the email domain associated with your Google accounts, please contact us so that we can add the new domain to your organization.
SAML
If your company uses an identity provider like OneLogin, Okta, LastPass, Azure AD, SecureAuth, or Active Directory, your IT department may want to configure SAML. To set up SAML, you must:
- Belong to an organization or division on Asana Enterprise, Enterprise+, or Legacy Enterprise.
- Be a super admin the organization
Once an organization has been set up with SAML, the organization members will no longer need a password to log into their accounts. From the login page, they can just enter their email and click Log in, leaving the password field empty. Alternatively, they can also use the IdP app dashboard to access Asana.
Step One: Configure your IDP
If you meet those conditions, the first step is to configure Asana with your identity provider. The steps for OneLogin, Okta, LastPass, Bitium, SecureAuth, Active Directory and Entrust Identity are listed below, but you can also do this for other identity providers:
Active Directory
Check out this document to find out how to set up SAML for Asana with Active Directory.
You could also try Okta Cloud Connect. Okta Cloud Connect is a free edition of Okta for one application. It allows you to set up Okta for AD integration and SSO for one core application. You can find more information here.
Azure AD
Check out this article to find out how to set up SAML for Asana with Azure AD.
Google Workspace
Learn how to set up SSO via SAML for Asana here.
LastPass
- In LastPass Enterprise, first go to your Enterprise Console and select the SAML tab at the top of the console. You will then be taken to the main SAML page
- Click the Asana app icon
- Follow the instructions on the screen
- Copy the Log-in URL and the x.509 certificate for use in Step Two
Okta
- In Okta, click the Applications tab
- Search for Asana
- Copy the Log-in URL and the x.509 certificate for use in Step Two
- Learn more here.
OneLogin
- In OneLogin, go to Apps > Find apps
- Search for Asana
- Click add next to Asana
- Click Continue
- Copy the the sign-in page URL and x.509 certificate somewhere for use in Step Two
SecureAuth
Check out this article for step-by-step instructions on setting up SAML for Asana with SecureAuth.
Entrust Identity
Check out this article to find out how to set up SAML for Asana with Entrust Identity.
Step Two: Configure Asana
After you've configured Asana with your identity provider, you now make the appropriate changes in Asana.
To change your organization to SAML
- Click your profile photo and select Admin console from the drop-down menu
- Navigate to the Security tab
- Navigate to the Global authentication settings section
- Click SAML authentiction
- Click Required for all members, except guest accounts
- Paste the sign-in page URL that you copied from Step One into its corresponding field
- Paste the X.509 Certificate that you copied from Step One into its corresponding field
- Set a session timeout for your members
- Add a mobile session timeout if needed
- Click Save changes
- All of your users will be logged out (you included) in order to guarantee that all of your full members authenticate via SAML from that moment on.
If you are using open-source or non native integrations, such as Shibboleth or PingFederate. You will need to share the Asana SSO metadata with the technical contact to be configured in their IdP of choice.
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" entityID="https://app.asana.com/">
<md:SPSSODescriptor AuthnRequestsSigned="false" WantAssertionsSigned="false" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
<md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</md:NameIDFormat>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://app.asana.com/-/saml/consume" index="0"/>
</md:SPSSODescriptor>
</md:EntityDescriptor>We recommend that a super admin for your organization first sets SAML to optional and tries to log in with their SAML credentials. Then after a successful login, the super admin can switch the configuration to required.
Once set up properly, anyone who belongs to your company's organization will be required to log in to their Asana account with your organization identity provider (regardless of other organizations or workspaces their account may have access to).
Super admins can control which internal users have access to Asana via their identity provider, by assigning SAML Sign-In to specific user groups only. If you are a super admin and are having trouble with setting up SAML for your organization, contact us. If you’re looking to set some rules for different IdP user groups, please contact us.
Audit log details for failed SAML logins
If your organization has access to the Audit Log API, failed SAML sign in attempts generate user_login_failed events in the audit log.
When a member's SAML login fails, these user_login_failed events now include a sanitized version of the SAML response returned by your identity provider. This additional detail helps admins and IT teams understand why a login failed and quickly identify configuration issues between Asana and the identity provider, while keeping sensitive values redacted.
You can use the audit log to correlate failed sign in attempts with the user, the time of the attempt, and other event details from Asana and your identity provider. For the complete event schema and field definitions, see the Audit log events developer documentation.
SAML session timeout
Super admins can set SAML session timeout between 1 hour and 30 days in the admin console. Members will be automatically logged out and asked to log in again after the specified timeout set.
Mobile session timeouts are disabled by default. Manage this setting in the Mobile session timeout section at the bottom of the window.
Public certificate
Asana supports the HTTP POST binding method for SAML, not HTTP REDIRECT. This means you must configure your IdP to use HTTP POST bindings, ensuring secure data transmission during the authentication process.
For enhanced security, Asana requires that either the SAML Assertions or the entire SAML Response is signed. This measure ensures the authenticity and integrity of the data exchanged. Ensure at least one of these elements is signed in your configuration.
Asana does not sign SAML requests. Consequently, when setting up SAML in your IdP, you should deactivate signing for authentication requests. This can be done by setting the Sign AuthnRequest preference to false (e.g., AuthnRequestsSigned="false").
Please include the IdP signing key information within the SAML assertion. This key is crucial for verifying the signature and maintaining the security of the SAML assertion.
Two-factor authentication
For more information on two-factor authentication, see this article.