Two Factor Authentication (2FA) gives your account an extra layer of security. With 2FA, hacking attempts are limited: that is because in addition to needing to hack through your password layer, hackers still need to access your phone to get into your account.
1. How to Activate/Deactivate 2FA as a User
Navigate to the User section, and open the tab Account Security:
Enable the setting Two-Factor Authentication (2FA), and follow the setup instructions:
ℹ️ Once successfully activated, you will be given a list of single-use recovery codes. Make sure you save your codes securely! If you lose your phone, you'll need these codes in order to access your account.
You can disable 2FA at any time, by clicking the "disable" button in the setting:
ℹ️ If you have trouble scanning the QR code to set up two-factor authentication for your account, you can still set up this security feature manually. We show you here how it works.
2. How to Enable Mandatory 2FA for Resources
You can make 2FA mandatory for your account. That means, once you enable and save the 2FA setting, all resources will be forced to set up 2FA immediately. They won't be able to access their account until they set it up.
Navigate to Settings, then select Security and click the edit icon. You can activate and deactivate the setting from here.
Once set up, if you disable the setting, it stops being mandatory for resources: this means they're able to deactivate 2FA on a user level - as explained above.