Platform Security
How is user management handled in the Mendix platform?
The Mendix Developer Portal provides a centralized interface for managing user access and permissions across applications and environments. Administrators can manage members through MxID and assign role-based access to ensure that individuals have the appropriate permissions to deploy and manage apps.
The security configuration is directly integrated into each project’s dashboard, offering a comprehensive 360° view of a user’s access rights within the context of a specific app. This visibility supports strong governance and compliance practices.
Mendix enforces a clear segregation of duties, ensuring that at a minimum, the roles of developer and application administrator are assigned to separate individuals. These roles are protected through the use of personal accounts, and Mendix explicitly disallows the use of shared or general management accounts. This policy ensures that all actions taken within the platform are auditable and traceable to a specific user, reinforcing accountability and transparency.
For more information on mitigating user-related risks within Mendix, please refer to the Mitigate Platform User Risk documentation.
Can We Use Our Own Identity Provider to Access the Mendix Platform?
Yes, Mendix allows organizations to use their own identity provider to manage user access to the Developer Portal. This means users can log in with their existing company credentials, making access more secure and easier to manage.
While authentication is handled by your identity provider, roles and permissions within the Mendix Platform are assigned and managed by administrators in the Developer Portal.
For more details, see Mitigate Platform User Risk.