# Account Security

Halo Security provides multiple options to secure access to your account, from passwordless authentication to enterprise-grade security controls.

## Magic Links

The default authentication method is passwordless using Magic Links. When signing in:

1. Enter your email address
2. Click "Sign In"
3. Check your email for a secure Magic Link
4. Click the link to securely access your account

## Passkeys

You can add passkeys as an alternative authentication method from your Profile settings. Passkeys provide a secure, phishing-resistant way to access your account using your device's biometric or PIN authentication.

To add a passkey:

1. Visit your Account > Profile > [Passkey Authentication](https://app.halosecurity.com/user/account/me/passkey/)
2. Select the Plus icon to **Add Passkey**
3. Follow your device's prompts to register the passkey

## Multi-Factor Authentication (MFA)

Individual MFA Each user can enable multi-factor authentication from their Profile settings:

1. Visit Account > Profile > [Multi-Factor Authentication](https://app.halosecurity.com/user/account/me/mfa)
2. Follow the setup process to configure your preferred authenticator app

Organization-wide MFA Administrators can require MFA across the organization:

1. Visit Account > Settings > Company > [Multi-Factor Authentication](https://app.halosecurity.com/user/account/company/mfa)
2. Enable "Require MFA"
3. Set a grace period for users to enable MFA (optional)

## IP Access Controls

You can restrict account access to specific IP addresses or ranges:

1. Visit Account > Settings > Company > [IP Allowlist](https://app.halosecurity.com/user/account/company/ip)
2. Add allowed IP addresses or ranges
3. Save changes

Once configured, users can only access the account from the specified IP addresses.

## Enterprise SSO

Halo Security supports SAML-based Single Sign-On (SSO) integration with major identity providers. To configure SSO:

1. Visit Account > Settings > Company > [SAML](https://app.halosecurity.com/user/account/company/saml)
2. Configure your identity provider settings

For detailed setup guides for specific platforms, visit our help center: <https://support.halosecurity.com/en/collections/3475260-integrations>


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.halosecurity.com/docs/account/account-overview/account-security.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.