The Two Factor Authentication feature part of a specific security package that can be found only in the Enterprise Plan.
Two-Factor Authentication is a way of authenticating users by a two-factor method. These factors are typically something a user knows (e.g., a password) and something they have (e.g., a phone) or something that’s uniquely theirs (e.g., biometric information). 2FA adds another layer of protection to an account as it means you need both of these factors to access the account.
It’s important to note that Two-Factor Authentication in Frontify is applied only for standard users and excludes Single-Sign On (SSO) users, for which 2FA can be handled by an SSO identity provider.
Click on your avatar at the bottom left side of the screen, then User Profile.
On the side panel, scroll down to the Security section, where you’ll find Password and Two-Factor Authentication. 2FA will be shown as Enabled or Disabled, depending on if you set it up before or not. When clicking Enable, it’ll be connected.
A pop-up window will appear with the setup instructions. We recommend using Google Authenticator, but feel free to use other applications (e.g., Authy). Note that the QR code generated is different every time.
Once successfully enabled, you’ll notice this status in the side panel.
How it appears at login
How can I turn 2FA on for everyone accessing my brand environment?
If you’d like no exceptions for the users, when accessing your brand, and would like to have everyone use the 2FA, follow these steps:
Click on your Account Settings and toggle to activate the 2FA in the Security section.
The general login view, when your users try to log in, and/or while they’re actively working in Frontify will be prompted instantly when enabling this setting:
How can I see which users have 2FA enabled in my organisation?
For users with account admin rights, you’ll find the information of users with enabled 2FA by heading to the user management section, under the Users tab.
What happens if I lose my phone?
Please contact support email@example.com using the email address for the account that you want to recover.
If you have any other questions, please don’t hesitate to contact us.