Two-factor authentication is a method of confirming a user’s claimed identity through two different factors - concretely, it is a way to increase the security of your account. In Ledgy, this will be through the password and an authentication code.
How do I set up 2FA in Ledgy?
To set up 2FA for your Ledgy account, click on your name in the top right corner of your Ledgy page to navigate to My Settings.
In My Settings > Access Control, you will find a toggle to set up two-factor authentication for your personal account. Once the toggle is turned on, a pop-up will guide you through a quick setup via downloading an authenticator app on your smartphone and scanning Ledgy's QR code. Once this is complete, you can use the authenticator app to generate a code every time you log in.
Some compatible authenticator apps include:
Please save the recovery code because it is essential to reset the 2FA method if you lose access to your device with the authentication app.
Can I make it mandatory for all stakeholders in my company to use 2FA when using Ledgy?
For companies, Owner-level collaborators (Company Settings > Collaborators) can also turn on two-factor authentication for all stakeholders and collaborators by default. This will enforce 2FA as a login requirement.
You can turn on 2FA in the Company Settings (left bar) > Access Control. If 2FA is not yet turned on in the Owner's personal account settings, a link will guide you to complete this step first.
Once 2FA is enabled, all stakeholders and collaborators in the company will be prompted with the requirement to enable 2FA as soon as they next log in to their Ledgy account. This applies to all current stakeholders, collaborators, and future recipients of Ledgy invitations.
This feature is available in the Enterprise plan.
What if a user loses access to their 2FA authentication device?
The 2FA requirement can be disabled by users using their Recovery Code. However, this code is only available to users when setting up their 2FA device.
With the Recovery Code, the user can proceed to log in to Ledgy, bypassing the 6-digit authentication by clicking "Use recovery code" or clicking the following Reset 2FA button.
Once the matching email and recovery code has been submitted, the user will receive by email a confirmation that the 2FA requirement has been disabled for their account.
How do I switch 2FA from one device to another device?
There are two processes for switching 2FA from one device to another. It depends if 2FA is mandatory for all stakeholders or not.
1. If 2FA is not mandatory:
Log in to your Ledgy account, on the top-right corner, click on your name, and eventually, on " My Settings".
You toggle off "Two-factor authentication" in the "Access Control" panel and immediately toggle it on again.
You will see a pop-up window appearing to set up 2FA in the authentication app of your choice. You can follow the process that we have already explained in the section "How do I set up 2FA in Ledgy?".
2. If 2FA is mandatory:
If the Owner of a company account decides to make 2FA mandatory for all stakeholders and you want to move 2FA from one device to another, you can not toggle off 2FA in the settings of your personal Ledgy account. You have to send your email and recovery code to Ledgy like in the previous section, "What if a user loses access to their 2FA authentication device?" explained.