Concord allows individual users to activate Two-Factor Authentication (2FA) (also called Double Authentication) on their accounts to protect them from unauthorized access. User can use a 2FA app of their choice on their mobile phone or tablet. Examples of available apps include: Google Authenticator, Authy, or Lastpass Authenticator.
*This feature is available for users that access Concord via email and password. Users who access Concord via company Single Sign on (SSO) or Google can activate 2FA in their respective identity provider's settings.
Activating Two-Factor Authentication
1. Enable two-factor authentication in Settings
- From the Home page, navigate to the gear ⚙ icon in the bottom left of your screen, and click Settings.
- Click on Preferences under Personal section in the left-hand panel.
- In the Two-factor Authentication section, click the Edit button.
- Enter your Concord account password and click the Manage two-factor authentication button.
Keep the Register Two-Factor Authenticator instructions page open to access the QR and verification codes.
2. Register the Two-Factor Authenticator
- If you don't already have one installed, Download a 2FA app on your mobile device or tablet.
- Open the app and scan the QR code from the Concord instructions page.
- Enter the verification code generated by the app into the input on the Register Two-Factor Authenticator instructions page.
- Click on the Verify Code & Activate button.
Important: Download, print, or copy your recovery codes. Store them somewhere secure and private. You can regenerate your recovery codes by clicking Edit in the Two-factor Authentication section and entering your password.
Logging in with Two-Factor Authentication
- On the Login page, enter your email and password.
- Open your two-factor authenticator app on your mobile device or tablet.
-
Enter the code generated by your application or enter an unused recovery code.
- Click Submit.
Disabling Two-Factor Authentication
- From the Home page, navigate to the gear ⚙ icon in the bottom left of your screen, and click Settings.
- Click on Preferences under Personal section in the left-hand panel.
- In the Two-factor Authentication section, click the red DISABLE TWO-FACTOR AUTHENTICATION button.
Viewing which users have Two-Factor Authentication enabled
Concord account Administrators can view which users have enabled Two-factor Authentication by:
- Navigating to Settings > Users (under company)
- Viewing the 2FA column
Users that have disabled or not yet activated will have Two-factor Authentication will have Disabled listed in the 2FA column.