Manage two-factor authentication (2FA)

Enabling and Disabling Two-Factor Authentication

Add a second layer of security to user logins and registrations. With two-factor authentication, a user logs in and is immediately sent an access code via email or text message. The user must enter that access code before they can be issued their access, identity, and refresh tokens.

Note that two-factor authentication is available only in Hosted Login v2.

Manage two-factor authentication

  • Enable and disable 2FA
    Turning two-factor authentication on. And then turning it off again.

  • Modify 2FA registration forms
    This ensures that new users won’t have to verify their email address on two separate occasions.

  • Require 2FA on every login
    Require users to go through two-factor authentication each time they log in.

  • Add 2FA messages to a flow
    Make any Hosted Login-compatible flow compatible with two-factor authentication..

  • View 2FA messages
    Use the Configuration API to view the subject line, plain-text body, and HTML-formatted body of your two-factor authentication messages.

  • Modify a 2FA message
    Use the Configuration API to change the subject line and/or the wording of your two-factor authentication messages.

  • Create a localized 2FA message
    Translate a two-factor authentication message into another language.

  • Format 2FA emails by using CSS
    Use CSS to spiff up your HTML-formatted two-factor authentication messages. Note that plain-text emails and text messages can’t be formatted by using CSS (or anything else).

Related articles

Related videos