Skip to main content

Two-Factor Authentication (2FA) Explained

Judi Zietsman avatar
Written by Judi Zietsman
Updated over 3 months ago

Quick Summary: Two-factor authentication (2FA) is an optional, additional layer of security for your account. When enabled, it requires users to provide their email, password, and a time-sensitive verification code from a separate mobile authenticator app to log in. This double-checks each user’s identity and significantly enhances account protection.

What Is Two-Factor Authentication?

Two-factor authentication (2FA) is an additional security step that confirms a user’s identity in two ways:

  1. Something they know: their email and password.

  2. Something they have: a one-time verification code from a mobile authenticator app.

This combination makes it much harder for unauthorized users to gain access, even if a password is compromised.

Enabling 2FA

2FA is a global setting that affects all users on your account. You can find it under Settings > Configuration > Access tab.

It is recommended that administrators notify all users in advance before activating it.

When 2FA is activated:

  1. Every user receives an email explaining the change and setup instructions.

  2. All users are logged out immediately and must set up 2FA when they log back in.

Setting Up 2FA

After 2FA is enabled by an administrator, each user must connect their account to a mobile authenticator app.

  1. Install an authenticator app
    • Every user must install a third-party authenticator app on their mobile device.
    • Google Authenticator is recommended, but other compatible apps may also be used.

  2. Connect the app
    • Users scan a QR code provided by the system using their authenticator app.
    • This connects the app to their account login.

  3. Get verification codes
    • Once connected, the app generates time-sensitive verification codes required at each login.

This setup process is explained in detail in the activation email sent to users.

Logging In with 2FA

Once setup is complete, users log in by providing all three of the following:

  1. Email address

  2. Password

  3. Verification code from the authenticator app

⚠️ Without access to the authenticator app (e.g., without your mobile device), login will not be possible.

How To Set Up Two-Factor Authentication (2FA)

⮞ For more on this topic, read: How To: Set Up Two-Factor Authentication (2FA)

⚠️ Watchouts

  • Login access: A user will be unable to log in if they do not have access to their mobile authenticator app. For example, if they do not have their mobile device with them, they will be locked out until they can access the app again.

Forget about these 👇 😞 😐 😃 Have your say here!

Related Articles
Single Sign-On (SSO) Feature
How To: Change Your Own Password
How To: Set Up Two-Factor Authentication (2FA)
Security & Compliance
Access - Two-factor authentication
Did this answer your question?