Enabling two-factor authentication

  • Updated

In this article, you will learn how to enable and use two-factor authentication to log in to your Workiz account.

What is two-factor authentication?

Two-factor authentication (2FA) adds an extra layer of security beyond just using a password. When you set up 2FA in Workiz, you’ll need to enter a verification code sent to your mobile phone in addition to your password to log in. This verification code will be sent via text message. This helps protect your and your clients’ sensitive data from unauthorized access.

Workiz strongly recommends having 2FA enabled for all accounts. 

Enabling two-factor authentication

Two-factor authentication requires you to enter a one-time passcode from your phone in order to log in and make sensitive account changes. This means the phone number listed on your user profile needs to be a mobile number capable of receiving text messages.

Please note that you should not use your Workiz Phone number for 2FA. Since Workiz Phone messages are only accessible when you’re logged in, using it for 2FA would create a loop where you can’t access the passcode needed to log in.

Two-factor authentication can be set up in just a few steps.

  1. From the navigation bar, select the profile icon > Settings
  2. Under General settings, select Security Center
    image 35-center.png
  3. Turn the toggle switch on for Require two-factor authentication (2FA)
    Sec2FA.png
  4. Verify that you have access to the mobile number on the screen and select Send code via SMS
    2024-05-01_15-20-53 12fa.png

    Don't have access to this number anymore? You can change the phone number that receives the verification code by selecting "Change number".

    Please ensure that this is a valid cell phone number that can receive text messages and not one of your Workiz numbers.

  5. From your mobile device, open the text message you received from Workiz and find the verification code
  6. From your computer, enter the verification code and select Verify
    2024-05-01_15-21-07 12fa.png

    Need to resend the code? Wait for the timer in the pop-up to run out and select "Resend code".

What you will see after enabling two-factor authentication

After verifying your phone number, you will now be able to use two-factor authentication when logging in to Workiz. Moving forward, you will need to enter your password and a verification code from your mobile device to log in. 

2FAGIF-newUI-ezgif.com-optimize.gif

Two-factor authentication must be enabled on a per-user basis. If you enable it here, it will only require your user to authenticate via text message. To also require additional team members to authenticate via text message, please ensure they enable it as well.

After enabling 2FA, Workiz will also begin requiring a one-time passcode (OTP) in order to make changes to sensitive settings related to Workiz Pay, including changes to your:

  • Bank account
  • Instant payouts
  • Statement descriptor

Disabling two-factor authentication

Workiz strongly encourages keeping 2FA enabled at all times for enhanced security. Disabling 2FA removes this additional layer of protection, which could increase the risk of unauthorized access to your account. If you choose to disable it, you can do so from your Security Center.

  1. From the navigation bar, select the profile icon > Settings
  2. Under General settings, select Security Center
  3. Turn the toggle switch off for Use text message authentication
  4. From your mobile device, open the text message you received from Workiz and find the verification code
  5. From your computer, enter the verification code and select Verify
    image 9432fa.png

Once 2FA is disabled, you will now be able to log in to Workiz using only your password. 

Logging in after losing access to your two-factor authentication number

If you no longer have access to the phone number used for 2FA, please contact support. 

What you will see after team members enable two-factor authentication 

Workiz makes it easy to keep track of 2FA for all of your users. Primary account admins can choose to receive email notifications whenever a user has changed their phone number for verification.

Group 632576.png

This setting is only available to primary account admins.

These changes will also appear in your Activity report. Enabling and disabling 2FA will also appear on this report. 

image 991.png

Was this article helpful?