Authentication

AgentDesk supports two ways to sign in: email and password, or Single Sign-On (SSO) through your company's identity provider.

Email and password

When you sign in with your email and password:

• Your password is securely hashed and never stored in plain text
• Failed login attempts are rate-limited to prevent brute-force attacks
• Generic error messages are shown on failed attempts to protect account privacy
• Accounts must have a verified email before they can sign in

Single Sign-On (SSO)

When your portal uses SSO:

• You authenticate through your company's identity provider (Okta, Azure AD, Google Workspace, etc.)
• The connection uses industry-standard OIDC with additional security measures
• If SSO is enforced, password login is disabled for that portal
• New users can be created automatically when they first sign in through SSO

For setup instructions, see Single Sign-On.

Sessions

• Your session stays active for up to 30 days
• The session is stored securely and cannot be accessed by other websites
• If you are inactive for an extended period, you will need to sign in again

Account security tips

• Use a strong, unique password for your AgentDesk account
• If your organisation offers SSO, use it for an additional layer of security
• Contact your administrator if you suspect unauthorised access to your account