Ferndesk
Authentication

Magic Links Authentication

Magic Links let users sign in via email without passwords. They enter their email address and receive a one-time link to access your help center.

Requires a Team or Enterprise plan with Private mode enabled.

  1. User visits your help center and is redirected to /signin

  2. User enters their email address

  3. Ferndesk sends a one-time sign-in link to that email

  4. User clicks the link and gains access

Sessions last until the user closes their browser or signs out.

  1. Go to Help Center > Customize > Access Control

  2. Select Private mode

  3. Open the Login methods accordion

  4. Click Enable Magic Links

  5. Click Save changes

The status badge will show "Enabled" when active.

You can enable Magic Links alongside OIDC and JWT. Users will see all enabled options on the sign-in page.

Inviting Users

To give specific people access:

  1. Navigate to Help Center > Customers

  2. Add customer email addresses

  3. They'll receive an invitation to access your help center

Anyone with the link can request a magic link, but only invited emails will receive one.

  1. Open your help center in an incognito window

  2. Enter your email on the sign-in page

  3. Check your inbox for the magic link email

  4. Click the link to verify access

Magic links expire after one use or 15 minutes. Users will need to request a new link if theirs expires.

To turn off magic link authentication:

  1. Return to Access Control settings

  2. Click Disable Magic Links

  3. Save your changes

Existing sessions remain active until users sign out or their session expires.

Best for:

  • Small teams without SSO infrastructure

  • Low-friction authentication

  • Temporary or guest access

Not ideal for:

  • Large enterprises requiring SSO

  • Programmatic access (use JWT instead)

  • Authenticated, embedded in-app help (use JWT instead)

Was this helpful?