Manage two-factor authentication (2FA)
Enabling and Disabling Two-Factor Authentication
Add a second layer of security to user logins and registrations. With two-factor authentication, a user logs in and is immediately sent an access code via email or text message. The user must enter that access code before they can be issued their access, identity, and refresh tokens.
Note that two-factor authentication is available only in Hosted Login v2.
Manage two-factor authentication
-
Enable and disable 2FA
Turning two-factor authentication on. And then turning it off again. -
Modify 2FA registration forms
This ensures that new users won’t have to verify their email address on two separate occasions. -
Require 2FA on every login
Require users to go through two-factor authentication each time they log in. -
Add 2FA messages to a flow
Make any Hosted Login-compatible flow compatible with two-factor authentication.. -
View 2FA messages
Use the Configuration API to view the subject line, plain-text body, and HTML-formatted body of your two-factor authentication messages. -
Modify a 2FA message
Use the Configuration API to change the subject line and/or the wording of your two-factor authentication messages. -
Create a localized 2FA message
Translate a two-factor authentication message into another language. -
Format 2FA emails by using CSS
Use CSS to spiff up your HTML-formatted two-factor authentication messages. Note that plain-text emails and text messages can’t be formatted by using CSS (or anything else).
Related articles
Related videos
- [Enable and disable two-factor authentication](doc:enabling-and-disabling-two-factor-authentication]
- Register New Users When Using 2FA
- Trust a device?
- Require 2FA each time a user logs on
- Multi-factor authentication: Email
- Multi-factor authentication: SMS
Updated over 2 years ago