Eigenoid Access
What is Eigenoid Access?
Eigenoid Access is the part of Eigenoid that controls who can sign in to your workspace and how. It replaces traditional passwords with a simpler, more secure model: every user joins by invitation, and authenticates with a second factor they chose during setup — an authenticator app (TOTP) or a Passkey.
There are no passwords to create, remember, or reset. Access is granted and revoked by workspace admins — not self-service sign-ups.
What problem does it solve?
Shared workspaces have two common access problems:
- Weak credentials — users pick easy passwords, reuse them across services, and forget them.
- Stale access — people who leave an organisation often retain access because off-boarding is manual.
Eigenoid Access addresses both. The invitation-only model means only explicitly invited users can join. The absence of passwords removes the most common credential vulnerability. An authentication method is required from the first login — not optional.
Key concepts
| Concept | What it means |
|---|---|
| Workspace | Your organisation's Eigenoid environment. All members, products, and credentials are scoped to a workspace. |
| Invitation | The only way to join a workspace. An admin sends an invitation link; the link is single-use and expires in 24 hours. |
| Claiming an invitation | The one-time act of following your invitation link and setting up your authentication methods. After this, the link is consumed. |
| Authentication method | How you verify your identity on every login. Eigenoid supports two: authenticator apps (TOTP) and Passkeys. You choose one or both during claim. |
| Security page | Your personal dashboard (profile icon → Security) where you view and manage your enrolled authentication methods. |
| Service account | A non-human identity used by applications and CI/CD pipelines to authenticate with Eigenoid APIs. |
Who is this section for?
End users
If you received an invitation and want to set up your account, start here:
- Getting started — claiming your invitation — accept your invitation, set up your authentication method, and understand how logins work.
- Authenticator app (TOTP) — set up a free app on your phone as your verification method.
- Passkey — set up a faster, phishing-proof login using your fingerprint, face, or a security key.
- Manage security methods — add, review, and remove your enrolled methods.
- Troubleshooting — common login problems and how to resolve them.
Developers
If you're integrating with Eigenoid APIs using a service account:
- Service Account Keys — download and configure your JSON credential for local development, containers, and CI/CD pipelines.
Authentication methods at a glance
Eigenoid requires at least one authentication method on every account. You choose which method (or methods) to enrol when you claim your invitation.
| Method | How it works | Best for |
|---|---|---|
| Authenticator app (TOTP) | Generates a 6-digit code every 30 seconds in a free app on your phone. | Anyone with a smartphone. Good universal backup. |
| Passkey | Verifies identity using your fingerprint, face, or a physical security key. No codes to type. | Fastest and most phishing-resistant. Recommended primary method. |
Set up both. A Passkey for everyday use and an authenticator app as a backup means you're never locked out — even if you switch devices or lose access to one method.
What's next?
If you're new to Eigenoid, start with the Getting started guide. It walks you through claiming your invitation, setting up your authentication method, and logging in — end to end.