Support

Submit a ticket My Tickets
Welcome
Login  Sign up

Configuring Two-Factor Authentication

In this article: 

Turning on Two-Factor

Administering Two-Factor



Two-Factor Authentication is a mechanism for adding a secondary security layer when logging in with a username and password. Use of Two-Factor Authentication is highly recommended in particular for users with an HR or Admin role in the system.  


If you are integrated with G Suite or Office 365, you are able to log in via Single Sign On, which will honour the Two-Factor authentication of your G Suite or O365 accounts. If you log in via user name and password, you can enable Two-Factor Authentication within Appogee HR. 


Turning on Two-Factor

Log into Appogee HR, click your account icon in the top right corner, then open Preferences. 



From here, go to Password & Two-Factor Authentication. Click Enable Now. 





The page will then load with a QR code. You'll need to have an Authentication app on a mobile device with which to scan the QR code. 


Example apps to use would be Google Authenticator, Microsoft Authenticator or LastPass Authenticator. 


Scan the code on your mobile device, then enter the number into the box to enable Two-Factor. 


You can then optionally provide a mobile phone number which can be used to receive a code in case the app is unavailable and/or generate a set of backup codes to be used if neither the app  nor the phone is available.  


You are now set up and next time you need to log in you will have to enter the Two-Factor code found on your authentication app. 


Administering Two-Factor

As an Admin or HR Manager, you are able to prompt all or selected users to enable Two-Factor at log in. 


You can do this by going to Roles & Access > Access.


Either select employees individually, or select all. This will give them a prompt to set up Two-Factor the next time they log in, and all times after until they've set it up. You can see which users have enabled Two-Factor, and also disable it from here too. 


If a user finds they are locked out of their account because they have lost access to their 2 factor code generator and they have no backup mechanism you can disable it for them and prompt them to enable it again on their next login.


Did you find it helpful? Yes No

Send feedback
Sorry we couldn't be helpful. Help us improve this article with your feedback.