Mojo Helpdesk Authentication and Security Settings

Admins can choose the authentication method that best fits their organization’s needs.

Mojo Helpdesk uses email addresses to uniquely identify contacts.

Mojo authentication methods

Email and Password

Google Log-in

  • Users can sign in directly using their Google account
  • Enabled by default (a Login with Google button is displayed)
  • Can be disabled by admins
  • Button label can be customized (ex. Login with School Account)
  • Can be enabled along with Email and Password and Microsoft/Azure AD Login

Microsoft/Azure AD Log-in

  • Users can log in using their Microsoft 365 or Azure AD account
  • Enabled by default (a Login with Azure button is displayed)
  • Can be disabled by admins
  • Button label can be customized (ex. Login with work email)
  • Can be enabled alongside with Email and Password and Google login

Single Sign-On (SSO)

  • Allows log in using an organization’s identity provider
  • Supports SAML-based authentication (ex. Okta, Google Workspace, Azure AD)
  • Admins must configure SSO before it becomes available to users
  • Once SAML is configured, this will be the only available login method

Temporary Access Pass (if enabled)

  • Admins can issue a time-limited pass for users who need temporary access
  • Passes automatically expire if not used within the defined time window
  • Useful for contractors, short-term staff, or troubleshooting account issues

Additional security measures

  • Email verification process for new accounts
    • Mojo Helpdesk requests that new users verify their account. If the account is not verified, the system displays an indicator to agents.
  • Two-Factor Authentication (2FA)
    • Note: 2FA is bypassed when using third-party authentication (e.g., Google or Azure), since these providers can enforce their own two-factor setup.
  • Whitelist and blacklist
    • Restrict access by allowing or blocking specific IP addresses or domains