Overview
Two-factor authentication (2FA) adds an extra layer of security on top of your username and password when logging into Zaius by requiring verification of the login through a second linked device.
Why is two-factor authentication more secure?
Two-factor authentication requires someone attempting to access an account also to have access to a physical object belonging to the account owner. This additional requirement makes the risk of a potential intruder gaining access to an account much lower.
Enable two-factor
Only User Admins can follow these steps. To enable two-factor authentication:
- In your Zaius account, click the Account Settings
icon in the main navigation bar.
- In the sidebar, select the Authentication option.
- In the Two-Factor Authentication section, toggle the Require all users option to the ON position.
- In the prompt that appears, select the Begin Setup option.
- A QR code will be presented. Use your selected authenticator to scan the code and input the authentication key.
- Click the Secure Account & Enable 2FA button. Once enabled, all users will be prompted to configure 2FA during their next login. Their final button will read Sign In Securely instead.
Reset two-factor
If you lose your 2FA device, you will not be able to access your account. To regain access, you will need a User Admin to reset your authentication. This user will need to:
- In your Zaius account, click the Account Settings
icon in the main navigation bar.
- In the sidebar, select the Users & Permissions option.
- Click on the name of the user that needs a reset.
- Select the Reset Authentication link listed below their email address.
- In the prompt, select the Yes, Reset option. The reset user will be prompted to reauthenticate during their next login attempt.
Confirm team two-factor
To confirm that a team member has set up two-factor authentication:
- In your Zaius account, click the Account Settings
icon in the main navigation bar.
- In the sidebar, select the Users & Permissions option.
- Click on the name of the user that you'd like to review. If 2FA is not enabled, a grey lock and "User has not set up 2FA" message will appear below their email address. If 2FA is enabled, a green lock and "2FA validated" message will appear instead.