# Two Factor Authentication (2FA)

# About

Two-factor authentication helps to protect a users account by adding an additional layer of security. Once Two-factor Authentication is enabled, a password and time sensitive code is required in order to access an account.

Two-factor authentication is enabled on a per user basis. A user's 2FA status is displayed on the 'Users' management page.

# Enable 2FA

To enable 2FA:

  1. Click the avatar in the top right corner of the dashboard and select My account
  2. Scroll to Two-factor authentication and click Enable two-factor authentication
  3. Open your two-factor authentication app (Google Authenticator or similar) and select to add an account. Scan the QR code shown on the screen.

WARNING

Enabling Two-factor authentication will automatically log you out of the Enhance panel. When you next log in you will be required to use both your password and time-sensitive code

# Disable 2FA

To disable 2FA

  1. Click the avatar in the top right corner of the dashboard and select My account
  2. Scroll to Two-factor authentication and click Disable two-factor authentication
  3. Open your two-factor authentication app and enter the time sensitive code

# Disable 2FA from the command line

WARNING

This tool is only available to the master organisation.

On your Control panel server, run:

ecp disable2-fa [email protected]*

*Where [email protected] is the user's email address used to access their account