Enable 2FA for Clients
Two-Factor Authentication (2FA) enhances security by adding a second step to the login process. It combines something that you know (for example, your password) with a second factor, typically from something that you have (for example, your phone). Requiring both to log in decreases the threat of a leaked password.
- For more information, see Two-Factor Authentication.
- For steps and more information about enabling 2FA for admins, see Enable 2FA for Admins.
Enable 2FA for a User
- The steps below configure Time-Based Tokens.
- Before users can configure 2FA, you must activate at least one service and configure it globally at Configuration () > System Settings > Two Factor Authentication.
To configure use of Time-Based Tokens for 2FA as a user in the Client Area:
1. Go to Security Settings.
Go to Hello, Name! > Security Settings.
2. Enable Two-Factor Authentication.
Click Click here to Enable.
3. Configure Time Based Tokens.
Select Time Based Tokens and click Get Started.
4. Scan the QR code.
Scan the QR code with an authenticator app like Google® Authenticator or Duo® Mobile.
5. Enter the authenticator app code.
Enter the 6-digit code that the authenticator app generates and click Submit.
6. Record your backup code.
Record the displayed Backup Code value in a safe place.
When you are finished, click Close.
Enable 2FA for Users in the Admin Area
Admins can disable (but not enable) Two-Factor Authentication for individual users at Clients > Manage Users.
Last modified: January 9, 2025