Skip to main content

Cross-Organization vs Organization-scoped Passwords

Stytch offers two different approaches to passwords within our B2B product, depending on how passwords are treated across :
  1. Cross-Organization: An email has a single password associated with it, and the end user can use that password to log into any of their Organizations that allow passwords as an authentication method.
  2. Organization-scoped: A password is scoped to a specific MemberID, and can only be used to log into that specific Organization.
If you have a single, centralized login page for all Organizations, we recommend you use Cross-Organization Passwords by enabling Allow Passwords to be used between Organizations in the Passwords Policy page of the Dashboard. If you have tenanted login pages for each Organization, and want to enforce strict data isolation between your Organizations we recommend you use Organization-scoped Passwords and disable this setting.
This is a Project-level setting, and cannot be changed if you have active Passwords. Make sure you have selected the password type you want in the Dashboard prior to integrating.