Xakia provides an enterprise-grade, secure method for ensuring your session is authenticated, and your information is secure.

Our session management is built using OAuth 2.0 refresh tokens, obtained with the authorization code grant flow.

For users, this means that to authenticate in Xakia, you are required to enter your username, password, and MFA code if required. Your session time lasts for a rolling 72 hours (ie. if you are active every 72 hours, you do not need to re-authenticate) and requires full re-authentication every 14 days irrespective of your activity.

Note that you may not necessarily need to re-enter your authentication credentials every 14 days if you are using federated identity. Your federated identity provider may silently renew your session without interaction.

As with all information stored on your workstation, we encourage you to consider important practices to secure your information, which may include but not be limited to:

• Set a strong password that is difficult to guess
• Never share your password and ensure that it is protected
• Lock your workstation whenever you are not using it

View this article to learn more about protecting your password and security.

For more information about information security, or for a copy of our information security pack, please email support@xakiatech.com.