audIT offers app-based two-factor authentication (2FA) as an added layer of protection on top of your account. You're likely already familiar with other forms of 2FA, like SMS or email-based versions. Upon logging in, you'll be prompted to enter a code delivered to your inbox or phone before being able to continue.
App-based 2FA works a little differently, but functions on the exact same principles. Instead of opening up your inbox or messages to receive a code, you'll open up an app. Instead of providing us with your telephone number or email address, we'll exchange some super secret codes to get you set up.
The best thing about app-based 2FA is it's entirely free to use, and there are a bunch of different apps that support it. Here are some of our favorites:
- Authy - https://authy.com/download/ (iOS, Android, Windows, MacOS, and Linux)
- Google Authenticator (iOS and Android)
- Microsoft Authenticator - https://www.microsoft.com/en-us/account/authenticator (iOS and Android)
Enabling 2FA On Your Account
To set up 2FA for the first time, click on the profile icon in the top right hand corner of your screen, and select Two-Factor Authentication. Once there, tap Enable, and you'll be walked through the rest.
Enabling 2FA Across Your Organization
audIT supports requiring 2FA for anyone accessing your audIT site. You might use this if you store extra sensitive information within audIT, or just like having extra peace of mind.
You'll need admin permissions to enable this feature. Navigate to Admin and System Setup in the left menu. Under audITors, tap Enable 2FA Requirement Policy. The next time anyone logs in with two-factor authentication disabled, they'll be prompted to enable it before proceeding to their account.
Sometimes your code just won't go through. We find people usually aren't using the correct code for audIT or the code they tried to enter expired (new codes are generated every 30 seconds).
If you've double-checked your code and still can't log in, contact support.