Overview
Two-factor authentication (2FA) adds a second verification step when signing in. After entering their password, users must also provide a time-based code from an authenticator app on their phone. This protects accounts even if a password is compromised. Two-factor authentication is voluntary ā users enable it individually through their account settings. Once enabled, the additional verification step is required every time they sign in.Enabling Two-Factor Authentication
To enable two-factor authentication on your account:- Navigate to your account settings
- Find the Two-factor authentication section
- Click Enable
Connecting Your Authenticator App
After clicking Enable, a QR code and secret key are displayed:- Open your authenticator app (such as Google Authenticator, Authy, or 1Password)
- Scan the QR code displayed on screen, or manually enter the secret key shown below it
- The app begins generating 6-digit codes that refresh every 30 seconds
The QR code label shows your company or reseller name, making it easy to identify the account in your authenticator app.
Confirming Setup
To verify your authenticator app is connected correctly:- Enter the current 6-digit code from your authenticator app into the confirmation field
- Click Confirm setup
Until you confirm setup by entering a valid code, two-factor authentication is not active. If you navigate away before confirming, you will need to start the setup process again.
Signing In with Two-Factor Authentication
When two-factor authentication is enabled, the sign-in process has an additional step:- Enter your email and password as usual
- You are redirected to the Two-factor authentication challenge page
- Enter the current 6-digit code from your authenticator app
- Click Submit
Recovery Codes
When you enable two-factor authentication, you receive 8 recovery codes. These are single-use backup codes that let you sign in if you lose access to your authenticator app ā for example, if your phone is lost, damaged, or reset.Storing Recovery Codes
After confirming your two-factor authentication setup, recovery codes are displayed. Store them in a secure location separate from your authenticator app, such as a password manager or printed copy kept in a safe place. You can view your recovery codes at any time from the Two-factor authentication section of your account settings by clicking Show recovery codes.Using a Recovery Code to Sign In
If you cannot access your authenticator app during sign-in:- On the two-factor challenge screen, select the option to use a recovery code
- Enter one of your unused recovery codes
- Click Submit
Regenerating Recovery Codes
If you suspect your recovery codes have been compromised or you have used several of them, you can generate a fresh set:- Navigate to your account settings
- Find the Two-factor authentication section
- Click Regenerate recovery codes
Disabling Two-Factor Authentication
To remove two-factor authentication from your account:- Navigate to your account settings
- Find the Two-factor authentication section
- Click Disable
Monitoring Two-Factor Status
Users with permission to manage other users can see and filter by two-factor authentication status:- The user list includes a Two-factor enabled filter with options for both enabled and disabled
- Individual user detail pages show whether two-factor authentication is active
- The last login indicator shows whether the sign-in required two-factor verification