# Two Factor Authentication (2FA)
# About
Two-factor authentication helps to protect a users account by adding an additional layer of security. Once Two-factor Authentication is enabled, a password and time sensitive code is required in order to access an account.
Two-factor authentication is enabled on a per user basis. A user's 2FA status is displayed on the 'Users' management page.
# Enable 2FA
To enable 2FA:
- Click the avatar in the top right corner of the dashboard and select My account
- Scroll to Two-factor authentication and click Enable two-factor authentication
- Open your two-factor authentication app (Google Authenticator or similar) and select to add an account. Scan the QR code shown on the screen.
WARNING
Enabling Two-factor authentication will automatically log you out of the Enhance panel. When you next log in you will be required to use both your password and time-sensitive code
# Disable 2FA
To disable 2FA
- Click the avatar in the top right corner of the dashboard and select My account
- Scroll to Two-factor authentication and click Disable two-factor authentication
- Open your two-factor authentication app and enter the time sensitive code
# Disable 2FA from the command line
WARNING
This tool is only available to the master organisation.
On your Control panel server, run:
ecp disable2-fa [email protected]*
*Where [email protected] is the user's email address used to access their account