Two-Factor Authentication (2FA) is a two-step verification system that adds an additional layer of security to login details. It involves the traditional username and password as well as a 6 digit number generated by an app that is common to the user and the authentication system.
Currently, 2FA is not mandatory at FundApps. Each environment can have 2FA enabled by FundApps if you would like to do so. Determining whether 2FA is required on your account depends on your needs.
If Single Sign-On (SSO) is implemented, 2FA can be bypassed in reliance on SSO security and any user can easily sign in by providing their username only. If SSO is not implemented, 2FA can be used instead.
To set up 2FA, you will require a smartphone with an internet/Wi-Fi connection and an authenticator app.
Once the client has enabled this feature with us, any user can sign up to use 2FA on their account by following the steps below:
- Download and install a suitable mobile application on your smartphone.
There are a number of apps that you can use for this purpose, including Google Authenticator, Authy, Duo, HDE OTP, FreeOTP, Microsoft Authenticator, etc.
We recommend Google Authenticator as a free and reliable solution.
- Log into FundApps with your username/password.
- When prompted after the login screen, choose to set up 2FA.
- A QR Code will be generated for you and displayed on the screen.
Open Google Authenticator and click on the red + symbol.
Select “Scan a barcode” and continue by placing the QR code within the red lines.
As soon as this is picked up, a code will be generated for you.
Enter a valid (unexpired) code as-is into the allocated box and choose to continue.
- You will be redirected to your dashboard, and a caption will pop up to confirm your new settings.
- Click on your username to access the “edit User” pop-up window
- Select “Remove Two-Factor Authentication"
- Click "Save"
Q. What happens if I lose my device (and change to a new device) or my account record is erased from the app I was using?
A. If you do not have any back-up codes available, get in touch with the tenant system administrator. They can remove 2FA from your user settings by unticking Two Factor Authentication under Admin > Users. You should then log in using your username and password, following which you will be prompted to set up 2FA again.
Q. What happens if I type the authentication code wrong and get locked out?
A. A FundApps administrator can remove 2FA from your account. The user (rather than the admin) would also have to reset the password.