Skip to main content

Local Authentication

By default, Firezone will use local email / password for authenticating users to the Firezone portal. Administrators can add users and assign their passwords on the /users page. See Add users for more details.


For production installations, we highly recommend enabling TOTP-based MFA for any accounts using the local authentication method.

Disabling Local Authentication

If you wish to completely disable local authentication in favor of an SSO-only approach, see our OIDC or SAML guides.