This article explains how to set up and manage Two-Factor Authentication (2FA) in Printavo to help keep your account secure. It walks through enabling 2FA for users, setting up an authenticator app, using backup codes, and resetting access if someone loses their device or can’t log in.
Enabling 2 Factor Authentication
For anyone who is the Shop Admin (Super Admin) in their Printavo account, they'll have the ability to enable 2FA for themselves, other Admins, and non-Admin users from within the User permissions. This can be found by going to My Account > Users.
After a shop Admin enables 2FA for themselves, they can then add another user within their account, a confirmation modal is presented to inform the admin that the user who is having 2FA enabled will be logged out, and they will have to set up 2FA during their next login attempt.
Note: Click save at the bottom of the list of user permissions to ensure that the change is made.
- This first example (as seen below) is what you will see if you're the shop Admin enabling 2FA for yourself.
- Here is what a shop Admin will see when enabling 2FA for another user.
- When 2FA has been enabled for a user but they have not yet set it up, a Pending status will be displayed under the user’s name in User permissions.
- Shop Admins will also be able to reset other user’s 2FA by clicking the Reset 2FA link located under the user’s name.
After 2FA has been enabled for a user, they will be required to scan a QR code with an authenticator app to retrieve time-based one-time codes that they will enter anytime they log into Printavo (this will appear to them when they log into Printavo next). 2FA can be turned off for a user by unchecking the "Enable two-factor authentication" permission and confirming the selection by pressing save.
Note: Until the user has successfully set up 2FA and logged in with a time-based one-time password, they will be directed to the 2FA setup screen during login to ensure the user has access to the QR code in case they accidentally closed their browser or navigated away from this page during the 2FA setup process.
When a user has successfully set up their 2FA, they will be provided with a list of one-time 16-digit backup codes that we highly encourage they save in the event that their 2FA app is not working as expected and they need a backup code to log in with. A prompt will appear to allow users to copy their list of recovery codes and keep them in a safe in case they are needed. We recommended storing them locally on the machine and/or writing them down somewhere.
Note: The backup codes are one-time use so we recommend not using them unless you have lost access to your 2FA code provided by your authenticator app. If you use a backup code to login and do no have access to your backup code we recommend having another admin reset your 2FA. If there is no other admin, you will need to reach out to support@printavo.com to have us reset your 2FA (this will allow you to set up 2FA on a provider of your choice again).
After a user has successfully set up 2FA, anytime they log in they will be prompted to enter a time-based one-time code that is provided by their authenticator app. This code will be entered only after they have entered a valid username and password. After entering a valid time-based one-time code, they will be logged into the app.
If you need any assistance with resetting an Admin or User 2FA, let us know by emailing us at support@printavo.com.
Comments
Article is closed for comments.