Secure Mattermost¶

Mattermost ships with several security features that can help organizations safeguard their data. Mattermost Enterprise Edition includes features designed to offer extra layers of security protection.

Encryption options - Setup encryption for data in transit and at rest.
Transport encryption - Secure data in transit between Mattermost and other services.
Multi-factor authentication - Require users to provide a secure one-time code in addition to their username and password to log in to Mattermost.
ID-only push notifications - Enable fully private mobile notifications to protect against iOS and Android notification infrastructure breaches.
Enterprise mobility management - Secure mobile endpoints with management application configuration.
Delegated granular administration - Grant user access to specific areas of the Mattermost System Console.
Custom terms of service - Increase clarity on legal Mattermost expectations for internal employees and guests.
Manage session length - Control how long user sessions remain active.
User and group provisioning via AD/LDAP - Provision and synchronize users and groups to pre-defined roles.
SAML-based single sign-on (SSO) - Enable login using a single user ID and password managed through a SAML 2.0 Service Provider.
SAML SSO technical documentation - Technical details on SAML SSO.
Certificate-based authentication - Identify a user or a device before granting access to Mattermost.
Manage file sharing and downloads - Control file sharing and downloads in Mattermost.