Two-factor authentication (2FA) setup

DashboardPlatform basicsQuickstarts

Adding a second layer of verification to your login process significantly increases the security of your organization's data. By requiring a unique code in addition to your password, you ensure that only authorized users can access the Dashboard.

Setting up 2FA with an Authenticator app

  1. Open your Dashboard → Settings Profile
  2. Click the Enable 2FA button
  3. Choose Authenticator app as your preferred method and click Continue
  4. Use an app on your mobile device (such as Google Authenticator, Microsoft Authenticator, or 1Password) to scan the QR code displayed on the screen
    • Note: If scanning isn't working, click Enter code manually to type in the secret key.
  5. Click Continue
  6. Enter the 6-digit verification code generated by your app, and click Continue again
  7. Record your emergency backup codes in a safe place and click Turn on 2FA

Setting up 2FA via SMS

  1. Open your Dashboard → Settings Profile
  2. Click the Enable 2FA button
  3. Select SMS and click Continue
  4. Input your mobile phone number
  5. Click Send verification code
  6. Enter the 6-digit code sent to your device
  7. Click Confirm verification code to complete the process

Verification methods

  • Authenticator app (recommended): This is the most secure option. It generates codes locally on your device, meaning it works without a cellular signal and isn't vulnerable to SIM-swapping attacks.
  • SMS text messages: This method sends a one-time code to your phone via text. It's convenient but requires a reliable cellular connection to receive the login code. It is also less secure than the authenticator app method, as SMS codes can be intercepted via SIM-swapping attacks or SS7 telecom protocol exploits.

Backup codes

If you choose the authenticator app method, you will be provided with a set of one-time-use backup codes. These are vital for regaining access to your account if you lose your phone. Store them in a secure location such as a password manager or an encrypted file, never in plaintext on your desktop or in your inbox.

Make 2FA required for all team members

Administrators can enforce 2FA for the entire team by navigating to Settings > Security and selecting Make 2FA required. Note that you must have 2FA enabled on your own profile before you can enable this requirement for the rest of the organization.

Once activated, any team member without 2FA will be prompted to set it up the next time they attempt to log in.

How to reset 2FA

If a team member loses their mobile device or cannot access their verification codes, an organization administrator can clear their 2FA settings:

  1. Go to Settings > Team.
  2. Locate the user in the list and click the three-dot menu icon next to their name.
  3. Select Reset 2FA.

If 2FA is optional for your organization, the user can now log in using just their password. If you have made 2FA mandatory, the user will be logged out immediately and required to set up a new verification method the next time they log in.

Top Topics
Platform basics
Dashboard
Integrations
Payments
Payment Methods
Checkout
Stripe
Donor Portal
Elements
Installation
CMS
Quickstarts
PayPal
Marketing & Analytics
JavaScript API
Related articles
PCI DSS 4.0.1 Compliance: Authentication Policy Update
To comply with PCI DSS 4.0.1 security standards and strengthen user account protection, we have updated our authentication policies. As a GDPR compliant donor software provider, these changes help reduce
Platform basics

Still need help?

Need help with something not covered in Support Center? Connect with a support engineer for more assistance.
Email us