Security & Compliance

Does MiOpsAI offer two-factor authentication?

Yes. MiOpsAI supports two-factor authentication (2FA) on every plan, and we strongly encourage it for all team members. Owners can require 2FA across the entire workspace, so individual users cannot opt out.

Supported 2FA methods

  • TOTP authenticator apps: Google Authenticator, Authy, 1Password, Bitwarden, Microsoft Authenticator, any RFC 6238 compatible app
  • Hardware security keys: YubiKey, Titan, and any FIDO2/WebAuthn-compatible key
  • Passkeys: native passkey support via WebAuthn (Touch ID, Face ID, Windows Hello)
  • Backup codes: 10 single-use codes generated at setup for recovery

We do not offer SMS-based 2FA by default because SMS is widely known to be vulnerable to SIM-swap attacks. If a customer has a specific SMS requirement, we can enable it on Enterprise+ as an exception with the security trade-offs documented.

Workspace-level enforcement

  1. Optional: each user enables 2FA individually (default)
  2. Required for admins: anyone with elevated permissions must enable 2FA
  3. Required for all: workspace owner can enforce 2FA across every team member
  4. Grace period: when enforcement is enabled, existing users get 7 days to set up before being locked out

SSO and SAML

For Agency and Enterprise+ customers, MiOpsAI supports SAML 2.0 single sign-on via Okta, Azure AD, Google Workspace, OneLogin, and JumpCloud. SSO can be configured with mandatory MFA enforced at the IdP layer, which means MiOpsAI delegates authentication and inherits whatever 2FA your IdP requires.

Session management

You can view all active sessions per user, force logout from a specific device, set session timeout durations, and require re-authentication for sensitive operations like billing changes or data exports. LizziAI autonomous actions are also logged with the originating user session for full audit clarity.

Recovery process

If a user loses their 2FA device and has no backup codes, the workspace owner can reset their 2FA after identity verification. If the owner loses access, we have a documented recovery process involving identity verification with the registered billing contact and a mandatory cooldown period to prevent social engineering attacks.

2FA is included free on every plan from Starter at $199/month upward. Start your private beta trial to set up 2FA on day one.

Last updated April 21, 2026

Related questions

Is MiOpsAI SOC 2 compliant?Does MiOpsAI use my data to train AI models?How does MiOpsAI handle data breaches and incidents?Does MiOpsAI comply with GDPR for European customers?Can I delete all my data from MiOpsAI permanently?Does MiOpsAI comply with CCPA for California residents?

Ready to see MiOpsAI in action?

Request access and we’ll walk you through how the platform solves your specific workflow.

Request Access →