Iris lets you manage your account security through a dedicated Security section in your account settings. From here you can change your password and enable or disable two-factor authentication (2FA). These settings help protect your Iris account from unauthorized access.
Your email address, verification status, profile info, and account deletion are managed separately on the Settings (Profile) tab.
Accessing Security Settings
Click your profile avatar in the top-right corner of the app.
From the dropdown, select Security.
The Security panel opens, showing your password field and a 2FA toggle.
Changing Your Password
In the Security panel, find the Password field (shown as masked dots — your actual password is never displayed).
Click the "Change" link to the right of the Password label.
A new page opens in your web browser where you can set a new password.
Follow the instructions on that page to complete the change.
The password change happens outside the Iris app, in your browser. Once complete, return to the app. You may need to sign in again afterward.
Password complexity requirements are determined by the authentication provider and may not be visible within the Iris app itself.
Enabling Two-Factor Authentication (2FA)
Two-factor authentication adds an extra layer of security by requiring a code from an authenticator app in addition to your password.
In the Security panel, find the 2FA Enabled toggle.
Switch the toggle on.
A new page opens in your web browser to guide you through enrollment — typically scanning a QR code with an authenticator app.
Complete the setup in your browser. Once done, 2FA is active on your account.
Disabling Two-Factor Authentication
In the Security panel, find the 2FA Enabled toggle (it'll be in the "on" position).
Switch the toggle off.
2FA is immediately disabled — no browser step needed.
Email Verification
Your email verification status is shown on the Settings (Profile) tab:
Verified email — the email field appears normally.
Unverified email — the field is highlighted with a warning border, and you'll see:
An "Email Unverified" indicator
A message: "A new verification email has been sent"
A "Send Again" link to resend the verification email
Iris automatically sends a verification email the first time you sign in with an unverified email.
If you change your email address and save, you will be logged out immediately. You'll need to verify the new address before signing back in.
Deleting Your Account
Go to Account > Settings (Profile tab).
Scroll down and click Delete Account.
A confirmation prompt appears: "Are you sure you want to delete your account?"
Click Delete Account to confirm, or Cancel to go back.
After deletion, you are automatically signed out and redirected to the home page. Account deletion is permanent and cannot be undone.
What Happens If…
…you close the browser during a password change or 2FA enrollment? The change won't be completed. Try again from the Security panel.
…you lose internet while changing settings? The action will fail. Restore your connection and try again.
…2FA enrollment fails? You'll see an error notification: "Failed to enroll MFA." Try again from the Security panel.
…you change your email address? You're logged out immediately. A verification email is sent to the new address. Verify it before your next sign-in.
…your email is unverified? A verification email is automatically sent on your first login. You can also click "Send Again" on the Profile tab.
Troubleshooting
What's happening | Likely cause | What to do |
"Change" password link does nothing | Browser blocked the popup | Allow popups for Iris in your browser settings |
2FA toggle doesn't respond | Network issue | Check your internet connection and try again |
"Failed to enroll MFA" notification | Server error or network timeout | Wait a moment and try toggling 2FA on again |
"Email Unverified" warning won't go away | Haven't clicked the link in the verification email | Check your inbox (and spam folder) for the verification email |
Logged out after saving email change | Expected behavior | Sign back in and verify your new email |
"Failed to change password" error | Network issue or session expired | Sign out, sign back in, and try again |
FAQs
Where do I find my security settings? Click your profile avatar in the top-right, then select Security from the dropdown.
Can I change my password inside the Iris app? You start the process from the app, but the actual password change happens in your web browser via an external page.
What authenticator apps work with Iris 2FA? Any standard TOTP-compatible app — Google Authenticator, Authy, Microsoft Authenticator, 1Password, and others.
Will I be logged out if I change my password? Possibly. The password change goes through an external page. You may need to sign in again afterward.
Can I turn off 2FA without going to a browser? Yes. Disabling 2FA is instant when you toggle it off — no browser step needed.
What happens if I delete my account? Your account and all associated data are permanently removed. You're signed out immediately. This cannot be undone.
Why was I logged out after changing my email? Changing your email requires re-verification. Iris logs you out so you can verify the new address.
I never received a verification email. What should I do? Check your spam/junk folder. If it's not there, go to Account > Settings and click "Send Again" under the email field.
Can I sign in with Google instead of email and password? Yes. The login screen supports both email/password and Google sign-in.
Is there a limit on password changes? No limit within Iris. The external authentication provider may have its own rate limits.