Qgiv has introduced Two-Factor Authentication to make Qgiv accounts more secure. Read on for directions on how to enable two-factor authentication. This security feature is not mandatory, but organization administrators can make enabling two-factor authentication mandatory for all their organization's Qgiv users.
Contents:
- Enabling Two-Factor Authentication for Your Org
- Enabling Two-Factor Authentication for Your Individual Account
Enabling Two-Factor Authentication for Your Org
When an administrator makes two-factor authentication mandatory for every user, users will be prompted to enable it the next time they log in. The mandatory popup message looks like this:
If the user tries to ignore the prompt and doesn't enable this feature, they won't be able to access your organization's Qgiv information or settings. Instead, when they close the popup they'll be on their My Information page where they can enable this feature.
To make two-factor authentication mandatory for all of your organization's Qgiv users, log in as an account administrator and go to Users.
On the Users page, all your users will be listed. Along the top of this page is the Enforce 2-Factor Auth for all users toggle. Click it to require all users to enable two-factor authentication.
Turning on the toggle causes a modal to appear to confirm whether you want to enforce two-factor authentication for all users. Click Confirm or Cancel.
Enabling Two-Factor Authentication for Your Individual Account
To enable two-factor authentication on your individual Qgiv user account, go to My Profile, which can be selected by hovering over the letter in the bottom-left corner of your control panel.
Then scroll down to the Two-Factor Authentication section. You can see the status of two-factor authentication and enable this feature in this section. Click Enable 2FA.
A modal will appear prompting you to re-authenticate your account by entering your username and password.
A new modal will appear with a list of instructions, a QR code (we blurred the image below for security purposes), and an area to enter the PIN code generated by the Authenticator App you use to scan the QR Code.
We recommend either Google Authenticator or FreeOTP for your Authenticator App. You can download either app by visiting the Apple App Store on an iPhone or iPad or the Google Play store on an Android device.
Once you've downloaded an authenticator app, use it to scan the displayed QR code (you'll have to give the app permission to use your device's camera). The QR code is unique to you. Therefore, you should only scan your code with your own authenticator app. Do not give other users access to the QR code to add to their authenticator app.
Once you've scanned the QR code, a set of numbers will be automatically created and displayed in the authenticator app. Enter the numbers into the PIN Code section of the modal shown above.
Please note: Authenticator apps cycle through different PIN codes and you must enter and submit the code before the timer on that set of numbers expires. The PIN is normally a combination of six numbers.
Once you have the PIN code entered, click Submit.
Two-factor authentication will then display as enabled in My Information.
Below the grey text box is a Recovery Code. Like your QR Code, this should not be shared as it is used as a last line of defense to get back into a compromised account. It's used to disable two-factor authentication for your account if you lose access to your authenticator app. If you use the code, you’ll be prompted to go through the setup process again.
Beneath the recovery code are the options to Reset 2FA or disable 2FA for your account.
If this safety measure is required by your organization for all Qgiv users, disabling two-factor authentication will prevent you from accessing your organization's Qgiv account. All links will direct you to re-enable this security feature.