Two-Factor Authentication

This article will help you understand the importance of secured data and how you can be safe within smrtPhone by enabling Two-Factor Authentication.

Two-Factor Authentication (also referred to as dual-factor authentication or two-step authentication or 2FA) is a security process in which users provide 2 different authentication factors to verify themselves.

This is an extra security layer for your account and your business. Soon, it will be mandatory for all smrtPhone accounts; right now it is an optional setting that we strongly encourage.

Two-Factor Authentication (2FA) is an important verification step for you and your users' online security. Even a strong passcode/access key-code can be compromised and 2FA provides a second layer of security.

Using a second way of verifying yourself increases the chances of having a well-protected account and workspace.

Two-Factor Authentication requires a non-smrtPhone mobile phone number or an Authy/Google Authenticator App.

To get verified, access your Account Menu > My Account from the smrtPhone Dashboard (upper right).

You can use the Authy / Google Authenticator App in order to verify yourself. The process is exactly the same, either you choose SMS code or Authy / Google Authenticator App.

Press the Start setup button and you can start the 2FA customization.

At this moment, you can either scan the QR code via a mobile app, or you can copy-paste the code provided and continue with the authentication this way.

Once you get your code, hit the Continue blue button and proceed to insert the received code, and then press Verify and your account is set.

In the Two-Factor Authentication section, if you choose to verify yourself via SMS, use the second option. Click the Click here button and proceed. Add your phone number, and choose SMS in order to receive a code every time you need to authenticate.

Press Continue and proceed to enter your personal phone number which you want to be used for SMS verification.

Within seconds you will receive a code on your phone, ready to be inserted into the verification box. Type it in and click Verify.

Once you pressed the Verify action button, you will be provided with several recovery codes. You cannot move on without hitting the Copy button.

❗Note: Please, before pressing the Complete action button, we strongly recommend pasting those recovery codes you just copied for yourself and saving them before moving on.

⚡Keep these recovery codes in a safe place, as a backup recovery option for your account. Once you use one of these 10 recovery codes, that particular one becomes inactive but you still have the others in case of need.

You can also choose to modify your method of authentication from SMS to Authy or Google Authenticator App or the other way around. In this case, you will select the first option and click on Change Method.

❗Note: Please, keep in mind that if you switch from SMS to Authy and back to SMS, the system will remember the previous phone number you entered. In case you want to change that number, you need to restart the procedure: hit Disable 2FA and then Enable and insert the new phone number that you want to use.

Please keep in mind that Two-Factor Authentication is currently optional, but will soon be mandatory.

If you choose to disable 2FA while it remains an optional security measure, simply click on the option of disabling it and confirm this action. You can also update the method and change the way you receive the authentication code or the phone number.

Two-Factor Authentication offers you better protection primarily through the way this verification can be done:

✅ So, along with the recommendation to not reuse passwords across multiple sites, and regularly change passwords and codes, using 2FA is an extra security measurement, and offers you an additional layer of protection.

As an Account Owner, you can protect your business by enforcing the Two-Factor Authentication on all users' accounts.

In order to proceed, you need to access your smrtPhone Admin Dashboard - > Account Settings - > Two-Factor Authentication tab.

Here, by toggling the Enforce Two-Factor Authentication you can implement this security feature for all the Users of your account.

If the Two-Factor Authentication is enforced, all Users will need to comply and enable one of the two methods of verification implied by the system. If a User has access to multiple accounts, as long as one requires 2FA, the User will need to set it up. (You log into smrtPhone before you select which account, so the requirement lives at the User level at that point.)

⚡Only Account Owners can enforce this feature, only they can enable or disable it for the entire account.