You can add another layer of data protection to your account using Two-Factor Authentication in Productive. It takes only a couple of minutes to set up, and it's easy to use.
Why Set Up Two-Factor Authentication?
Multi-factor authentication (MFA), including two-factor authentication (2FA), is an electronic authentication method that protects your account from being compromised if someone finds out your password.
This method combines something you know (your password) with something you have (a six-digit code from a third-party authenticator).
How Does Two-Factor Authentication Work?
A third-party authenticator (TPA) app enables two-factor authentication by generating a randomly changing code for authentication.
For example, a six-digit code that you will be asked to enter when logging into Productive.
Requirements for Setting Up 2FA
A Smartphone: Required for installing the authenticator app.
An Authentication App: Install Google Authenticator, Microsoft Authenticator, Authy, etc.
Steps to Enable Two-Factor Authentication
Access Security Settings: Go to Settings > Security.
Turn on 2FA: Select Turn on 2-FA.
Note: If the account admin has just enforced 2FA for all the users, you'll be logged out from Productive and land on the 2FA setup page. From there follow the steps below.
Scan the QR Code: Use the authentication app to scan the QR code displayed on your screen. The app will generate a six-digit number.
Enter Codes: Return to Productive, click Next, and enter your Productive password along with the six-digit code from the authenticator app. Click Next.
Saving Recovery Codes
After enabling 2FA, a set of five recovery codes will appear. Copy these codes and save them in a secure location.
Important Note: Recovery codes are single-use codes for situations where you lose access to the device or email address where you receive your 2FA codes. These are not the codes used for regular login; you'll use your third-party authenticator for that.
Logging In with Two-Factor Authentication
After enabling 2FA, you will be logged out from Productive on all devices. To log in again:
Enter your email address and password.
Open the authentication app and enter the six-digit code.
If you can't use the authentication app, use one of the recovery codes you've saved.
Checking 2FA Status for Users
To see which users have 2FA enabled, go to Settings > Users and look at the 2FA column. If the column is not visible, add 2FA as a field.
Tip: As an admin or account owner, you can enforce 2FA for all Productive users. To do this, go to Settings > Organization Security. Learn more here.
Can't Log in?
If you've lost your backup codes and can’t log in, reach out to your organization owner.
The organization owner can generate and send recovery codes via Settings > Users, as long as you have previously logged in and set up 2FA.
Once you receive the recovery codes, use one to log back into your account.
After logging in, go to Settings > Security and scan the new QR code with your new authenticator app to update your 2FA setup.
For more scenarios with losing the authenticator app or switching phones, check out this article.