MaintainX Password Policy
At MaintainX, we take the security of your data very seriously. To authenticate to the MaintainX application, two options are available:
- Authenticating with a One-Time Password (OTP)
- Authenticating with Single Sign-On (SSO)
The MaintainX application does not use passwords to authenticate users. Therefore, no passwords are stored in our databases.
One-Time Password
OTP is the default authentication mechanism for MaintainX. For users, it is possible to connect using their phone number or email address. After submitting that information, you will receive a One-Time Password in the form of a 6 digit code. This code is only valid for you and for a limited amount of time. Once you submit the code, you will be logged in to the application. The security of your MaintainX organization relies on how your users secure access to their phones and their emails. Multiple security mechanisms are also in place to prevent brute-forcing and reuse of these codes.
Single Sign-On
MaintainX customers that wish to leverage their internal directory to authenticate in the application can do so using SSO with SAML or OIDC. MaintainX leverages Okta to provide this service. This option is only available under the Enterprise plan.