User authentication

Tier: Free, Premium, Ultimate
Offering: GitLab.com, GitLab Self-Managed, GitLab Dedicated

GitLab provides multiple authentication methods to secure how users can access their account and interact with repositories. Use passwords with optional two-factor authentication for web-based access, SSH keys for Git operations, and various types of access tokens for API interactions and automation.

On GitLab Self-Managed and GitLab Dedicated, administrators can configure how authentication works, monitor credential usage, and implement security policies to protect their instance. Users can manage how they authenticate, review active sessions, and configure additional security measures like two-factor authentication.

User passwords

Secure user passwords through requirements enforcement and password reset procedures.

Two-factor authentication

Enable multi-factor authentication for enhanced account protection.

Credentials inventory

Monitor credentials through a comprehensive access inventory.

SSH keys

Use SSH keys for secure authentication and communication with GitLab repositories.

Access tokens

Understand different authentication tokens and their security implications.

Smart card authentication

Authenticate using hardware devices for certificate-based login.

Account email verification

Confirm user identity with email verification.