With two-factor authentication you add an extra step to the login process and prevent unauthorized access to user accounts. If you are not using Single Sign On (SSO), we recommend enabling two-factor authentication.

In this article you will find all information needed to configure two-factor authentication in the environment and activate it for the relevant user(s).

To activate two-factor authentication your user must have the permission Pages | Manage | Set up two-factor authentication. The user role 'Administrator' has these permissions by default.

Via Manage / Environment / Settings you can activate two-factor authentication for the environment in the tab 'Security' with the option 'Activate two-factor authentication'. By default this is disabled. You can also configure how verification codes are sent and whether remembering browsers is allowed.

To use two-factor authentication it is required to send the user a verification code during login. Via Manage / Environment / Settings in the tab 'Security' you can configure how verification codes can be sent to users.

Please note: when using SMS verification, costs will be charged per SMS message sent. This rate can be found at Manage / Environment / Subscription.

The user must activate Google Authenticator themselves via 'My settings' in the tab 'Two-factor authentication'. In the user overview (available via Manage / Environment / Users) the column 'Google Authenticator two-factor authentication' is available so you can see which users use Google Authenticator.

When using two-factor authentication you can choose to activate the option 'Remember browser'. When activated, Zenvoices remembers the browser used and when logging in again on this device the two-factor authentication step will be skipped.

Via Manage / Environment / Users the settings for two-factor authentication can be configured at user level. For each user you can enable two-factor authentication. For SMS verification it is required that a phone number is configured for the user. This setting is also available for a submitter user.

When a user logs in and two-factor authentication is required, a message will appear stating that the user must verify themselves. If multiple verification methods are active, the user can choose a delivery method: SMS, email or Google Authenticator.

If only one delivery method is active, the verification code will be sent immediately and the user will be asked to enter the verification code. 'Remember browser for 14 days' is only available when the administrator has allowed this option.

Two-factor authentication with Google Authenticator is not yet available for the Zenvoices app for Android and iOS. Users for whom two-factor authentication with Google Authenticator is required can log in to the mobile app without two-factor authentication.

Keywords: 2FA, two factor authentication, two-step, 2 step