The Two-Factor Authentication feature is part of a specific security package that can be found only in the Enterprise Plan.
Two-Factor Authentication is a way of authenticating users by a two-factor method. 2FA adds another layer of protection to an account as it means you need both of this information to access. This information is typically something users generate (e.g., a password), something they own (e.g., a phone), or something that’s uniquely theirs (e.g., biometric information).
It’s important to note that Two-Factor Authentication in Frontify is applied only for standard users and excludes Single-Sign-On (SSO) users, for which 2FA can be handled by an SSO identify provider.
Click on your avatar at the bottom left side of the screen, then Edit Profile.
On the side panel, scroll down to the Security section to find Password and Two-Factor Authentication. 2FA will be shown as Enabled or Disabled, depending on whether you set it up before. When clicking Enable, it’ll be up and running.
A pop-up window will appear with the setup instructions. You need to use an authenticator app, we recommend using Google Authenticator, but feel free to use other applications (e.g., Authy). Note that the QR code generated is different every time and you need to generate your own to complete the process.
Once successfully enabled, you’ll notice this status in the side panel.
The following screen shows how the users' login page should like with the 2FA enabled.
Turn 2FA on for everyone
If you’d like every user accessing your brand management environment to use the 2FA, follow these steps:
Click on the Account tab and toggle to activate the 2FA in the Security section.
When your users try to log in and/or while they’re actively working in Frontify, the general login view will be instantly modified to grant the double authentication.
Check users with the 2FA enabled
Users with account admin rights will find who has the 2FA enabled by heading to the Access Management section under the Users tab.
In case you lose your device
Please contact support email@example.com using the email address for the account that you want to recover.
If you have any other questions, please don’t hesitate to contact us.