Required permissions: Account Administrator
Two-factor authentication (2FA) is a security setting that adds a layer of protection to your account. It requires users under your account to enter a one-time verification code whenever they attempt to log in. As an account administrator you can enable this setting globally so that all users are prompted to use 2FA during their login. You can also disable the 2FA for certain individual users if you want.
How to enable 2FA globally
You can enable 2FA and make it mandatory for all users through these steps:
- Inside SmileBack, navigate to the Users page.
- At the top of the page, under the Security section you can toggle the Two-Factor Authentication switch on.
Once this setting is enabled, all users in the account will have to set up their 2FA upon their next login. Unless you disabled 2FA for that user, or for all users. After that is set up, they will need to enter a one-time verification code each time they sign in to SmileBack.
You can turn off 2FA for certain users, for example if you have a read-only account that you use to display the SmileBack dashboard on a public screen. We advise you to require 2FA for any users with permissions above the read-only level.
How to reset 2FA for individual users
You can reset 2FA for any user in case they lost their phone or backup codes, couldn't set up their 2FA properly, or used up all their backup codes.
- Inside SmileBack, navigate to the Users page.
- Under the Users section, you can click the reset button in the 2FA for the relevant user.
Please note: resetting 2FA is only possible for users who have already gone through the setup process.
You'll see a confirmation dialog box, click Confirm to proceed. The user will now be able to set up their 2FA when logging in.
Comments
0 comments
Please sign in to leave a comment.