Passwords as Migration Path
Reed McGinley-Stempel, CEO of Stytch, on authentication for AI agents
This marked the point where Stytch stopped selling a belief and started selling a migration path. In practice, large companies did not want to force every user into a brand new login habit on day one. They wanted one vendor that could keep familiar email and password flows for hesitant users, while letting most users choose magic links, OTPs, passkeys, or social login. That made hybrid auth a wedge into bigger enterprise deals, not a retreat from the original thesis.
-
The product itself is built around mix and match login methods. Stytch supports passwords alongside email magic links, SMS codes, passkeys, and social OAuth, and many customers run both at once. About half of customers use hybrid setups, while roughly 90% of their end users still pick passwordless when given the choice.
-
The buyer logic is simple. A bank, marketplace, or consumer app can keep a password fallback for less technical or more change averse users, instead of risking conversion loss during a full cutover. Stytch then becomes the system of record for sessions, recovery, migration, and security policy across both old and new login methods.
-
This also pulled Stytch closer to the competitive center of identity. Auth0 and WorkOS both position around broad authentication coverage and enterprise migration, while Clerk wins on fast UI components for modern apps. Adding passwords let Stytch compete for customers who wanted a full identity layer, not just a passwordless feature.
The next phase is not passwords versus passwordless, it is identity platforms absorbing every login method and routing users to the one that fits. As more apps add agent access, fraud controls, enterprise SSO, and delegated permissions, the winning platform will be the one that lets customers modernize without breaking the habits of their existing users.