Secure Access Control

ISO Mate’s User and Role Management provides granular control over who can access what. Define roles, assign permissions, and manage users across your organization with enterprise-grade security.

Role-Based Access Control (RBAC)

Define custom roles with granular permissions following the resource.action pattern (e.g., issues.create, test_cases.view). Assign multiple roles to users, and permissions are combined across all assigned roles. Permission categories cover Project Management, Quality Assurance, Tasks & Notes, Custom Objects, Communication, Compliance, Account Administration, and Integrations.

User Invitation

Invite new users to your organization via email. Assign roles during invitation so new team members have the right access from day one. Track invitation status and resend invitations as needed.

Multi-Account Membership

Users can belong to multiple organizations (accounts) with separate roles in each. Switch between accounts using the account switcher in the header. Each account has complete data isolation.

Two-Factor Authentication (2FA)

Add an extra layer of security with TOTP-based two-factor authentication. Users set up 2FA with mobile number, receive recovery codes for backup access, and can regenerate codes if needed.

Google OAuth Single Sign-On

Allow users to sign in with their Google accounts. Link existing accounts to Google for one-click sign-in, or register new accounts directly through Google OAuth.

Password Policies

Enforce strong password requirements with configurable complexity rules. Track login attempts and automatically lock accounts after too many failed attempts. Users can reset passwords via email.

User Profile

Users can update their profile information, change their password, manage 2FA settings, link or unlink Google accounts, set their preferred language, and export or delete their personal data.