Authentication

Poly’s authentication system is designed to provide robust, flexible, and secure access to your resources. Here’s how it works:

API Keys and Permissions

Environment-Specific Access: API Keys are tied to a specific Environment, ensuring scoped access to resources.

Granular Permissions: Define permissions for each API Key to control access at a fine-grained level.

User Access: Assign API Keys to users to enable access; without an API Key, users cannot interact with resources.

Multi-Factor Authentication (MFA)

Poly supports MFA to enhance security for your account.

Administrators can enable or disable MFA at the Tenant level to make MFA available across the organization. This configuration allows users to set up MFA individually but does not enforce it.

Users can set up MFA for their accounts to add an extra layer of security. Once enabled, users authenticate with a second factor during login.

For more details, see the following pages:

• Managing Users and API Keys
• Enable MFA for Your Tenant
• Setting up MFA for your User Account