Manage two-factor authentication (2FA) for all users

Last modified: 15 May 2025

Note

Only admins can display and use the admin settings functionalities. See Permissions.

Make two-factory authentication (2FA) mandatory for all users of your organization to provide an additional layer of security.

If you want to mandate 2FA only for a single user, edit that user on the users page.

Make 2FA mandatory for all users

Prerequisites

• User role admin

Steps

1. Select your avatar in the tool bar, then select Admin settings > Signing in tab.

2. Activate the toggle Two-factor authentication (2FA) is mandatory for all users.

3. Select Make mandatory in the appearing window to confirm your action.

What will happen?

• For all users who already set up 2FA for their accounts voluntarily, nothing will happen.

• All users who did not set up 2FA for their accounts yet, must do so on their next sign-in or immediately if they are already signed in while navigating through the portal.

• No user can disable 2FA for their account. This means that they can not remove the device that is linked with an authenticator app on their Account security page.

Note

When 2FA is mandated for all users, only admins can disable 2FA for a single user, but only in exceptional cases (for example if a user does not have a phone).

Make 2FA optional for all users

Prerequisites

• User role admin

Steps

1. Select your avatar in the tool bar, then select Admin settings > Signing in tab.

2. Deactivate the toggle Two-factor authentication (2FA) is mandatory for all users.

3. Select Make optional in the appearing window to confirm your action.

What will happen?

• No authenticator apps will be removed automatically from the accounts of the users.

• All users can disable 2FA for their account, if they want to. This means that they can remove the device that is linked with an authenticator app on their Account security page.