Platform
Administration

Two-Factor Authentication

Add an extra layer of security with 2FA

Two-factor authentication (2FA) adds a second verification step beyond your password. Even if someone gets your password, they can't access your account without the second factor.

How 2FA Works

  1. Enter your email and password
  2. Open your authenticator app
  3. Enter the 6-digit code
  4. You're logged in

The code changes every 30 seconds, so even if someone sees it, they can't reuse it.

Enabling 2FA for Your Account

Open Account Settings

Go to Settings Account Two-Factor Authentication.

Scan the QR Code

Open your authenticator app and scan the QR code displayed. Supported apps:

  • Google Authenticator
  • Authy
  • 1Password
  • Microsoft Authenticator
  • Any TOTP-compatible app

Verify Setup

Enter the 6-digit code from your app to confirm it's working.

Save Backup Codes

You'll receive backup codes. Save these securely — they let you log in if you lose access to your authenticator app.

Using Backup Codes

If you can't access your authenticator app:

  1. Click Use backup code on the 2FA screen
  2. Enter one of your backup codes
  3. You're logged in

Each backup code can only be used once. After using a code, generate new ones.

Regenerating Backup Codes

  1. Go to Settings Account Two-Factor Authentication
  2. Click Regenerate Backup Codes
  3. Save the new codes securely
  4. Previous codes are invalidated

Requiring 2FA for Your Organization

Admins can require all members to use 2FA:

Open Organization Settings

Go to Settings Organization Security.

Enable Requirement

Toggle Require Two-Factor Authentication.

Set Grace Period

Choose how long members have to enable 2FA:

  • Immediate — Must enable before next login
  • 7 days — Week to comply
  • 30 days — Month to comply

Notify Members

Members without 2FA receive email notifications about the requirement.

What Happens When 2FA Is Required

  • Members without 2FA are prompted to set it up at login
  • After the grace period, they can't access the platform until 2FA is enabled
  • Admins can see who has/hasn't enabled 2FA in the Members list

2FA Status

View 2FA status for your organization:

  1. Go to Settings Members
  2. See the 2FA column:
    • ✓ Enabled
    • ✗ Not enabled
    • ⏳ Grace period (if required)

Disabling 2FA

For Your Account

  1. Go to Settings Account Two-Factor Authentication
  2. Click Disable 2FA
  3. Enter your password to confirm

For Another Member (Admin)

If a member loses access to their 2FA:

  1. Go to Settings Members
  2. Find the member
  3. Click Reset 2FA
  4. They'll need to set up 2FA again at next login

Troubleshooting

IssueSolution
Codes not workingCheck your phone's time is correct (auto-sync recommended)
Lost phoneUse a backup code, then reconfigure 2FA on new device
No backup codesContact an admin to reset your 2FA
App deletedReinstall and reconfigure using backup codes

Best Practices

  • Use a reputable authenticator app — Avoid SMS-based 2FA when possible
  • Store backup codes securely — Password manager or secure document
  • Keep your phone updated — Security patches protect your authenticator
  • Enable on all accounts — 2FA should be standard, not optional

Single Sign-On (SSO)

Connect your identity provider for centralized authentication

API Keys

Create and manage API keys for external integrations

On this page

How 2FA WorksEnabling 2FA for Your AccountOpen Account SettingsScan the QR CodeVerify SetupSave Backup CodesUsing Backup CodesRegenerating Backup CodesRequiring 2FA for Your OrganizationOpen Organization SettingsEnable RequirementSet Grace PeriodNotify MembersWhat Happens When 2FA Is Required2FA StatusDisabling 2FAFor Your AccountFor Another Member (Admin)TroubleshootingBest Practices