Skip to main content
Sign in
Français
Menu

Two-Factor Authentication (2FA)

Permanently deleted user
  • Updated

Overview

Concord allows individual users to activate Two-Factor Authentication (2FA) (also called Double Authentication) on their accounts to protect them from unauthorized access. Users can use a 2FA app of their choice on their mobile phone or tablet.

*This feature is available for users that access Concord via email and password. Users who access Concord via company Single Sign on (SSO) or Google can activate 2FA in their respective identity provider's settings. 

 

Activating Two-factor authentication

2FA_May_2023.png

 

Enable Two-factor authentication in Settings

  1. From the Home page, select the gear icon at the bottom left-hand corner
  2. From the menu, select Settings
  3. You will be navigated to the Personal information page
  4. In the Two-factor Authentication section, click the Set up button
  5. Enter your Concord account password and click Continue
  6. The Enable two-factor authentication modal will open with instructions. If you don't already have one installed, download a 2FA app on your mobile device or tablet.
    • Most one-time password (OTP) applications can be used with Concord.
    • Examples of commonly used apps include Google Authenticator, Authy, and LastPass Authenticator. Open the app and scan the QR code from the modal. 
  7. Open the app and scan the QR code from the modal
  8. Enter the verification code generated by the app into the field labeled Enter code
  9. Click the Activate button

 

Logging in with Two-factor authentication 

2FA_Code_Page_May_2023.png

  1. On the Login page, enter your email and password
  2. Open your two-factor authenticator app on your mobile device or tablet

  3. Enter the code generated by your application or enter an unused recovery code

  4. Click Submit

Using a recovery code to access your account

Recovery codes can be used in an event where a user has lost their phone and is unable to access the 

  1. On the Login page, enter your email and password
  2. Enter one of your unused recovery codes in place of a code provided by your Two-factor authentication app.
  3. Click Submit

Recovery_Codes_May_2023.png

 

If a user has lost their recovery codes and loses their mobile device, please reach out to Concord support at support@concordnow.com for assistance. 

Note: Each recovery code can only be used once.

 

Disabling Two-factor authentication or changing your Two-factor authentication provider

  1. From the Home page, select the gear icon at the bottom left-hand corner
  2. From the menu, select Settings
  3. You will be navigated to the Personal information page
  4. In the Two-factor Authentication section, click the Set up button
  5. Confirm your Password
  6. Click the Disable 2FA button

Note: You can now safely remove the entry for your Concord account from your authentication app.

Disable_2FA_May_2023.png

 

Viewing which users have Two-factor authentication enabled 

Screen_Shot_2020-10-13_at_4.38.05_PM.png

Concord account Administrators and Team Managers can view which users have enabled Two-factor authentication by:

  1. From the Home page, select the gear icon at the bottom left-hand corner
  2. From the menu, select Settings
  3. You will be navigated to the Personal information page
  4. Navigate to Users under Company
  5. View the 2FA column 

Two-factor authentication is set up by the user; admins are unable to require Two-factor authentication. The exception is when using single sign-on (SSO), and it is required through the SSO provider.

 

Users that have disabled or not yet activated will have Two-factor authentication will have Disabled listed in the 2FA column.

 

Learn more about Requiring double authentication (2FA) to sign

Related articles