Skip to main content

Account Security

Protect your Admiral account with advanced authentication and security features.

Security settings

Authentication Methods

Password

Traditional username and password authentication.

Requirements:

  • Minimum 12 characters
  • Uppercase and lowercase letters
  • Numbers and special characters

Best practices:

  • Use a unique password
  • Use a password manager
  • Enable additional authentication methods

Passkeys

Passwordless authentication using biometrics or hardware security keys.

Supported:

  • Touch ID / Face ID (macOS, iOS)
  • Windows Hello (Windows 10/11)
  • Android biometrics (fingerprint, face)
  • Hardware keys (YubiKey, Titan, FIDO2-compliant)

Benefits:

  • Phishing-resistant
  • Convenient biometric unlock
  • Cryptographically secure

Adding a Passkey

  1. Go to Settings > Security > Passkeys
  2. Click Add Passkey
  3. Choose type (device biometrics or security key)
  4. Follow prompts to authenticate
  5. Name the passkey
  6. Save

You can add multiple passkeys for backup.

Using Passkeys

When logging in:

  1. Enter email address
  2. Click Sign in with passkey
  3. Authenticate (fingerprint, face, or security key)

No password required!

Two-Factor Authentication (2FA)

Add extra security with time-based one-time passwords.

Supported apps:

  • Google Authenticator
  • Authy
  • 1Password
  • Microsoft Authenticator

Enabling 2FA

  1. Go to Settings > Security > Two-Factor Authentication
  2. Click Enable 2FA
  3. Scan QR code with authenticator app
  4. Enter 6-digit code
  5. Save recovery codes
  6. Enable

Recovery Codes

When enabling 2FA, you receive 10 one-time recovery codes.

Important:

  • Download and store securely
  • Each code can only be used once
  • Use if you lose access to authenticator app
  • Regenerate after use

Session Management

View and manage active sessions at Settings > Security > Sessions.

See where you're logged in:

  • Device type and location
  • Last active time
  • IP address

Revoke sessions remotely:

  • Lost or stolen device
  • Public computer
  • Suspicious activity

Security Audit Log

Track security events at Settings > Security > Audit Log.

Logged events:

  • Login attempts (successful and failed)
  • Password changes
  • 2FA enabled/disabled
  • Passkey added/removed
  • API token created/deleted

Each entry shows:

  • Event type
  • Timestamp
  • IP address
  • Device/browser
  • Result

Best Practices

Use Passkeys

  • Most secure authentication method
  • Phishing-resistant
  • Convenient

Enable 2FA

  • If not using passkeys, always enable 2FA
  • Protects against password theft

Regular Reviews

  • Review active sessions monthly
  • Revoke unknown sessions
  • Check audit log for suspicious activity

Secure Recovery Codes

  • Store in password manager or secure location
  • Don't store digitally without encryption
  • Regenerate if compromised

Security Alerts

Configure notifications for security events at Settings > Notifications.

Alert on:

  • Failed login attempts
  • New device login
  • Password changed
  • 2FA disabled
  • API token created

Notification channels:

  • Email (always enabled)
  • SMS (optional)
  • Slack (via webhook)

Compliance

Admiral maintains industry-standard security certifications:

  • SOC 2 Type II
  • ISO 27001
  • GDPR compliant
  • CCPA compliant

Security documentation available to Enterprise customers.