When we create a backup admin, we enable MFA, generate a strong password, and store the encrypted credentials in our database (as we need to show the credentials to the user during the initial setup). When the user first logs in using the credentials, they must set up MFA, and we will never use those credentials again. The user can even reset the password on their own. The backup admin credentials alone can’t be used by anyone without the MFA. Once the user authenticates our device and application, we will only use OAuth Access and Refresh Tokens for the authentication.
Are Backup Admin Credentials Stored and Handled Securely?