What it Does
- Secures your account by requiring the code once every 30 days (per browser)
- Allows for recovery using offline recovery codes and/or SMS recovery code
What it Doesn't Do
- Save your passwords or other credentials
You can first opt-in yourself.
- In the upper right, click your name.
- Click Profile/Password.
- Scroll down and click the Enable Multi-factor authentication button and click OK to confirm.
- Enter your password again.
- On the MFA screen, click Setup MFA and Access Your Account.
- Follow the instructions to download and install an MFA app if you don't have one already.
- Now open the MFA app (such as Google Authenticator or Authy) on your smartphone.
- Scan the QR code to add the account to your smartphone.
- In the Code field in RepairShopr, enter the Code shown in your authenticator app.
- Click Enable Multi-factor Authentication.
- Great! Now it's enabled. Now click Download Recovery Codes to do that and put them somewhere very safe. You cannot access your account with these if you lose access to that Authenticator Profile you just added.
- After saving the codes, click Next.
- Now you should really also setup a mobile recovery option. Enter your mobile number and click Confirm Recovery Mobile.
- Enter the code you receive on your mobile phone.
- Click Confirm.
Now you are done setting yourself up. If you want, you can force everyone in your company to do this. WARNING: Once you enable it, they are immediately forced into this setup wizard, so time it when everyone is ready to set it up or you might lock people out.
- Navigate to Admin > App Center.
- Scroll down to the MFA card and click Multi-factor Authentication.
- Click the Require all users on account to setup Multi-factor Authentication checkbox.
- Click Save.
You can see which users have enabled it here too.
If someone gets locked out, an admin on your account can "unlock" a user account, but without recovery codes or recovery SMS, a user account cannot be unlocked.