Accounts: Two-Factor Login Authentication

---

Plan Availability: ✓ Soho | ✓ Pro | ✓ Plus | ✓ Enterprise | ✓ Flex |
Locate: Profile > Two-Factor Authentication
Prerequisites: 

• A Staff user account in Checkfront.
• An Admin account to view the status of Two-factor Authentication on Staff accounts.

---

Two-factor Authentication is a popular security feature that adds an extra layer of protection for your account, in addition to your username and password.

There are many different forms of Two-Factor Authentication, but the most common use is a code generated by your smartphone.

At Checkfront, after entering your account password, you will be required to enter a six-digit code that is sent to you either as a text message or generated by the Google Authenticator app.

If this is starting to sound a bit complicated, don't worry! This is an optional feature (unless required by a third-party integration) and can be turned on or off at any time.

Here's what you need to know to activate and use Two-Factor Authentication in your Checkfront account...

 

---

You can determine which Staff accounts are currently using Two-Factor Authentication (Manage > User Accounts > Staff Accounts) by viewing the value in the Two-Factor Enabled column. 

A quick glance at the table will show whether Two-Factor Authentication is ON or OFF on a per-account basis.

Staff members must each enable or disable Two-Factor Authentication on their own individual accounts. Please see the instructions below.

 

---

To activate the feature on your own account, open the account menu at the top-right of the navigation bar and then select Profile from the drop-down menu.

 

---

Scroll down to the bottom of the page and you'll see a link to Setup your Two-Factor Authentication. Click on this link to begin the process.  

 

After clicking on the link, a pop-up modal will appear with instructions on how to proceed.   

In order to complete the Setup you must enter a six-digit code and click Submit. There are two ways in which you can receive that code on your smartphone. The first option involves downloading the Google Authenticator app.    

 

Start by installing Google Authenticator on your mobile phone. Google Authenticator is available for Android, iPhone and iPad devices.

Learn more about setting up Google Authenticator here: Get verification codes with Google Authenticator

Once you have installed Google Authenticator and a code is generated, you can enter the code into Checkfront as illustrated above.  

 

After clicking Submit, the pop-up window will disappear and you should see a green confirmation message at the top left of the screen that Two-Factor Authentication has been successfully setup on your Profile.  

 

The other option for obtaining a six-digit code is to send your phone a text message. Before proceeding, make sure your Mobile Phone number is entered into your Profile.   

1. Click Setup your Two-Factor Authentication to open the Setup modal.
2. Click Text code to (***) *** - ***** option to have a Code sent to your phone so that you can connect your phone to your account.
3. When the text message arrives on your phone, enter the six-digit code into the pop-up window on your computer and click Submit.    

 

---

Once you have completed these steps, you don't need to do anything else. Two-Factor Authentication is now active on your account!

Next time you log in, you will be required to enter your username and password as normal. However, there will now be an additional step added which requires you to enter a new six-digit code.  

If you have used the Google Authenticator app to set up the service, all you need to do is open the app on your phone and enter the code displayed on the screen. 

 

If you used a text message to set up authentication, simply click the Text code to (***) ***-**** button and enter the Code texted to you in the field provided.

 

---

You can View the Active Devices that are linked to your account by clicking on the link that has now appeared on your account profile page.  

From View Active Devices can select any of the active devices and delete as per your requirements.    

 

If you delete the device you are logged in with, you will be asked to authenticate again once you navigate away to another page. If your device is the last device in the list and you want to remove Two-factor Authentication, then simply disable Two-factor Authentication and the remaining devices will be removed in the process.

 

---

You can revoke Two-Factor Authentication at any time by logging into your account, visiting your profile, and unchecking the Two-Factor Authentication Active field. Don't forget to SAVE after unchecking the box!