This article is for you as an administrator that wants to add Two-Factor Authentication to your organisation and ensure a secure login to the platform. 

Why Two-Facor Authentication?

• 2FA reduces the risk of unauthorised access caused by stolen or weak passwords by adding an extra layer of security. In addition, many companies require 2FA to meet their internal security policies and compliance standards. 

How does it work?

• 2FA increases security for you and your company by requiring an additional verification step when logging in. Instead of only entering your password, you also need to provide a code that is sent to you via email or SMS. Support for Time-based One-Time Passwords (TOTP) will also be added.
• 2FA can be enforced for all users either at the Partner level or at the Organisation level. Individual users may also choose to enable it for themselves.
• Once verified, a device is remembered for 7 days, so the user only needs to enter the 2FA code once per device during that period.
• Please note that this setting only applies when logging in with username and password, and not when using Single Sign-On (SSO).

How to activate the feature?

• To activate 2FA on a Organisation level go to Organisation/Settings/My Organisation/Company Details and click “Require two-factor authentication for users” This will force the 2FA feature for all users within the organisation. 

• Users can also enable 2FA on their own account without this being forced by the organisation. They simply go to their own settings in the private tab and enable the setting.