Authentication Methods

The Agile.Now platform provides robust authentication models to ensure secure access to applications and workspaces. It supports multiple methods, allowing for a flexible approach to security that can be tailored to the needs of each workspace or application. Here’s an overview of the authentication process on the platform:

Standard Password Login

This method is the basic form of authentication, using a username and password. It is the default login method upon system installation but is not recommended due to security vulnerabilities. Instead, it is advisable to enhance security by enabling One-Time Password (OTP) or Multi-Factor Authentication (MFA).

One-Time Password (OTP)

OTP is a more secure authentication method that sends a unique code to the user’s email or phone number. It is highly recommended to enable OTP for an additional layer of security.

Multi-Factor Authentication (MFA)

MFA significantly enhances security by requiring multiple methods of verification. This typically involves something the user knows (password) and something the user has (a mobile device for receiving OTPs).

Single Sign-On (SSO)

SSO provides a convenient and secure way for users to access multiple applications with one set of login credentials. The Agile.Now system supports SSO according to the OpenID standard, which can include providers like Microsoft Entra ID or Google.

Authentication Configuration

Authentication methods are configured in the 'Security' section of the Settings application. Here, you can set the system-level login requirements as well as override these settings for individual applications.

Application-Specific Authentication

Some applications may require more stringent authentication methods. In such cases, application-level settings will take precedence over system defaults. For example, management apps might use SSO, while mobile apps may require OTP authentication.

Authentication Validation

The platform allows for various validation methods during MFA, including email, SMS, or authenticator apps like Google Authenticator or Microsoft Authenticator. The choice of validation method impacts the user experience and security level.

Authentication Flexibility

The system’s authentication flexibility ensures that applications can maintain their security standards while providing a user-friendly experience. For instance, if an application has a higher security requirement than the user's current login method, the system will prompt for additional verification.

The Agile.Now platform's authentication system is designed to provide a balance between security and usability, ensuring that the right levels of protection are in place without unnecessarily complicating the login process for users. It is important for administrators to configure these settings thoughtfully, considering the security needs of their specific environment.