In this article, you will learn how to enable and use two-factor authentication to log in to your Workiz account.
What is two-factor authentication?
Two-factor authentication (2FA) adds an extra layer of security beyond just using a password. When you set up 2FA in Workiz, you’ll need to enter a verification code sent to your mobile phone or email address in addition to your password to log in. This verification code will be sent via text message or email. This helps protect your and your clients’ sensitive data from unauthorized access.
Workiz strongly recommends having 2FA enabled for all accounts.
Enabling two-factor authentication
Two-factor authentication requires you to enter a one-time passcode from your phone or email in order to log in and make sensitive account changes. This means the phone number listed on your user profile needs to be a mobile number capable of receiving text messages.
Please note that you should not use your Workiz Phone number for 2FA. Since Workiz Phone messages are only accessible when you’re logged in, using it for 2FA would create a loop where you can’t access the passcode needed to log in.
Two-factor authentication can be set up in just a few steps.
- From the navigation bar, select the profile icon > Settings
- Under General settings, select Security Center
- Turn the toggle switch on for Require two-factor authentication (2FA)
Verify that you have access to the mobile number on the screen and select Send code via SMS
Don't have access to this number anymore? You can change the phone number that receives the verification code by selecting "Change number".
Please ensure that this is a valid cell phone number that can receive text messages and not one of your Workiz numbers.
- From your mobile device, open the text message you received from Workiz and find the verification code
From your computer, enter the verification code and select Verify
Need to resend the code? Wait for the timer in the pop-up to run out and select "Resend code".
- (Optional) Turn the toggle switch on for Login sending options to also receive a verification code via email
What you will see after enabling two-factor authentication
After setting up two-factor authentication, you will need to enter your password and a verification code from your mobile device to log in.
Your verification code is always sent via text message first. If you don’t receive it and have email verification enabled, you will see the option to resend the code after 60 seconds. Please note that email can only be used as a backup — not as the primary method.
One-time passcodes
After enabling 2FA, Workiz will also begin requiring a one-time passcode (OTP) in order to make sensitive changes or actions in your account, including:
- Bank account
- Instant payouts
- Statement descriptor
- Setting Genius Marketing campaigns live
Enabling 2FA for your team
You can strengthen your team’s login security by turning on two-factor authentication (2FA) for specific users or making it mandatory for everyone on your account.
Before enabling 2FA, please review the phone numbers and emails saved for each team member. Make sure every user has access to the contact information on file, as they’ll need it to receive verification codes. Failing to do so may prevent them from logging in.
Enabling 2FA for your entire team
- From the navigation bar, select the profile icon > Settings
- Under General settings, select Security Center
- Select Enable for all users
- Select Yes, enable
Enabling 2FA for specific users
- From the navigation bar, select the profile icon > Manage team
- Select the user you want to enable 2FA for
- Turn the toggle switch on for Two-factor authentication
- Select Save
Disabling two-factor authentication
Workiz strongly encourages keeping 2FA enabled at all times for enhanced security. Disabling 2FA removes this additional layer of protection, which could increase the risk of unauthorized access to your account. If you choose to disable it, you can do so from your Security Center.
- From the navigation bar, select the profile icon > Settings
- Under General settings, select Security Center
- Turn the toggle switch off for Use text message authentication
- From your mobile device, open the text message you received from Workiz and find the verification code
- From your computer, enter the verification code and select Verify
Once 2FA is disabled, you will now be able to log in to Workiz using only your password.
Logging in after losing access to your two-factor authentication number
If you no longer have access to the phone number used for 2FA, please contact support.
What you will see after team members enable two-factor authentication
Workiz makes it easy to keep track of 2FA for all of your users. Primary account admins can choose to receive email notifications whenever a user has changed their phone number for verification.
This setting is only available to primary account admins.
These changes will also appear in your Activity report. Enabling and disabling 2FA will also appear on this report.
Two-factor authentication FAQ
Yes. You can disable 2FA for login purposes at any time.
Please note that 2FA is still required to make certain changes to your Workiz Pay account, including updates to your bank account, statement descriptor, and instant payout settings.
You will not be able to make these changes unless 2FA is enabled and your identity is verified.
While 2FA can be disabled for login purposes, it is still required for certain sensitive changes to your Workiz Pay settings.
This includes updates to your:
- Bank account
- Statement descriptor
- Instant payouts
This requirement cannot be bypassed. To make these changes, you must first enable 2FA and verify your identity using a one-time passcode (OTP).
If you are not receiving your 2FA code during login, please contact support.
To help prevent future login issues, consider enabling email as a backup delivery method. When enabled, the option to receive the passcode by email will appear after the initial text-message timer expires.
Email delivery is only a backup option.
Workiz will always attempt to send your 2FA code by text message first. If you are unable to receive the code by text, you will need to wait for the initial timer to expire before the option to receive it by email appears.
The option to receive a one-time passcode by email is only available for login purposes.
For sensitive Workiz Pay changes, one-time passcodes can only be delivered by text message.
If you are unable to receive the code by text, please contact support.
Workiz uses the phone number saved to the user’s profile.
To find or update this number, go to your team management page and open the relevant user profile.
- If you no longer have access to the phone number used for 2FA, please contact support.
You should not use your Workiz Phone number for 2FA because Workiz Phone messages can only be accessed after logging in.
This can create a situation where you are unable to receive the passcode needed to access your account.