Two-factor authentication (2FA), sometimes referred to as two-step verification or dual-factor authentication, is a security process in which users provide two different authentication factors to verify themselves. This process is done to better protect both the user's credentials and the resources the user can access.
Two-factor authentication provides a higher level of security than authentication methods that depend on single-factor authentication (SFA), in which the user provides only one factor - typically, a password or passcode. Two-factor authentication methods rely on a user providing a password, as well as a second factor, usually either a security token or a biometric factor, such as a fingerprint or facial scan.
What kind of 2FA is used in PeopleForce
At PeopleForce, we use two-factor authentication via Software Tokens. This is a more advanced method that is gaining popularity.
Users need to install the app on their computer or smartphone to get the code. The software dynamically generates codes for the user for a short period of time. After successfully logging into the account, the user needs to open the application and enter the code that the application generated.
Examples of two-factor authentication software are: Google Authenticator, Authy, Microsoft Authenticator.
How to require 2FA for all employees as system admin
The system administrator can make 2FA mandatory for everyone.
Go to Settings → Authentication.
Enable Enforce Two-Factor Authentication (2FA).
Save the changes.
Once this setting is enabled, all users will be required to activate 2FA.
What employees will see
After the next login:
Employees will be redirected to a page requiring them to set up 2FA.
They will not be able to access any other pages until 2FA is enabled.
A notification will appear at the top of the screen:
“Wait, before continuing you need to enable Two-Factor Authentication.”
To complete the setup:
The employee goes to Account Settings.
Finds the Two-Factor Authentication section.
Clicks Enable Two-Factor Authentication.
Follows the step-by-step instructions (usually by connecting an authenticator app).
After setup, the login process will work as follows:
Enter email and password.
Enter the verification code from the authenticator app.
How an employee can enable 2FA in PeopleForce
If 2FA is not mandatory in your company, employees can still enable it themselves to better protect their account.
Here is how they can do it:
Step 1. Open account settings
Click on your profile (usually in the top right corner).
Open Account settings.
Step 2. Enable Two-Factor authentication
Scroll down to the Two-Factor Authentication section.
Click Enable Two-Factor Authentication.
Step 3. Install an Authenticator App
The employee needs an authenticator app on their phone.
For example:
Step 4. Connect the App
Open the authenticator app on the phone.
Tap “+” or “Set up account.”
Choose “Scan QR code.”
Scan the QR code shown in PeopleForce.
Step 5. Confirm setup
After scanning, the app will generate a 6-digit code.
Enter this code in PeopleForce to complete the setup.
From now on, when logging in:
The employee enters their email and password.
Then enters the code from the authenticator app.
This adds an extra layer of security to their account.
Important!
Two-factor authentication works only with standard log in, through login by username and password.
If you are connecting SSO (Single Sign-On Provider) such as Google Authentication, Microsoft Authentication, etc. then 2FA will not be available.