Important note: Starting September 24, 2024, two-factor authentication will be required for all new Formstack accounts. On November 7, Formstack will begin rolling out this requirement for existing paid accounts in phases, with notifications sent to those affected 30 days in advance. Learn more here.
Two-Factor Authentication (2FA) requires two components in order to login to your account:
- Your Formstack account password
- An authentication code sent to a mobile device via an app like Duo or Authy, or SMS
Note - Turning on 2FA makes it harder for anyone to access your account without your permission.
Once 2FA is set up, upon login, Formstack will send an authentication code to the user’s mobile device. Depending on the selected delivery method, the code will either be generated by an application on your mobile device or sent as a text message (SMS).
You must have both the user’s Formstack password and the authentication code. We strongly encourage users to turn 2FA on for the safety of their accounts. If you’re an admin, see how to force this functionality for all users on in your org.
Enabling Two-Factor Authentication
Org Admins can enable 2FA on their Profile pages by navigating to their Admin page by selecting “Administration” in the product switcher. Alternatively, you can navigate directly to the Admin page using https://admin.formstack.com.
Org Standard Users can navigate to the Admin page by clicking on their name in the app header and selecting ‘Update Your Profile’
Next, From the“Your Profile” page and scroll down to the “Profile security” section. From there, select toggle Two-factor authentication on.
Next, follow the directions on the screen to set up 2FA with an authenticator app
Choosing an Authenticator App
You can set up 2FA using a variety of authenticator apps. Here are a few that are widely used:
- Google Authenticator (Android/iPhone/BlackBerry)
- Duo Mobile (Android/iPhone)
- Authy (iOS, Android, Blackberry, Mac, Windows, Linux)
- Amazon AWS MFA (Android)
- Authenticator (Windows Phone)
Once you’ve downloaded the app to your device,, open the app and scan the provided QR code when directed.
Note: If the QR code is not accepted by your app you can produce a shared key by clicking on the link next to the QR code and type the code manually into the app instead.
Finally, enter the authentication code generated by the app and click ‘Verify code
Once the code is successfully verified, The setup process is complete.
Setting up 2FA using SMS
You also have the option to set up 2FA using SMS, which is more convenient but less secure than using an authenticator app.
Click the ‘Authenticate via SMS link at the bottom of the setup modal. Then, enter your phone number.
When you click “Next”, a text message will be sent to the phone number you entered with a 6-digit code. Enter that code into the modal and click ‘Verify code’.
If you do not receive a text message within a minute, click the ‘Resent code’ link as shown below.
The setup process is complete once you’ve verified the code.
Setting up Backup Options
Now that you've enabled two-factor authentication it's important to have a backup plan just in case you forget to take your phone out of your pocket before jumping in the pool or decide to do your own "Will it Blend?" test at home.
If you set up two-factor authentication using an app click the "View Backup Verification Codes" button and copy them down in a safe place somewhere other than your phone.
For a universal back up option, click the "Setup a Backup SMS Number" and enter a different mobile phone number than the one you are currently using to receive authentication code texts.
Changing Two-Factor Authentication Methods
Changing Two-Factor Authentication is easy! Just return to your profile settings and click the pencil icon next to the Two-factor authentication setting.
Then, follow the directions above to either set up 2fa with an authenticator app or SMS text messaging.
Comments
0 comments
Article is closed for comments.