Introduction
Two-factor authentication (2FA) enhances your account security by requiring two forms of verification: your password and an authentication code. In this article, we’ll guide you through setting up 2FA on your Ledgy account, explain how company owners can enforce 2FA for all stakeholders, and provide solutions for switching devices or recovering access if you lose your authentication device.
How do I set up 2FA in Ledgy?
Two-factor authentication (2FA) enhances your account security by requiring two separate forms of verification to confirm your identity: your password and an authentication code. In Ledgy, this ensures an extra layer of protection for your account.
To set up 2FA on your personal Ledgy account, click on your name in the bottom left corner of your Ledgy and select Settings from the pop-up menu.
Then under the Login settings section, you will find a toggle to set up two-factor authentication.
Once the toggle is activated, a pop-up will guide you through the setup process. You will need to download an authenticator app on your smartphone and scan the QR code provided. Once this is complete, you'll use the authenticator app to generate a code each time you log in.
Some compatible authenticator apps include:
Important note!
Please ensure you save the recovery code in a secure location. You will need this code to reset your 2FA if you ever lose access to your device with the authentication app.
Can I make it mandatory for all stakeholders in my company to use 2FA when using Ledgy?
For companies, Owner-level collaborators can turn on two-factor authentication for all stakeholders and collaborators by default which will enforce 2FA as a login requirement.
If you are an owner-level collaborator, you can turn on 2FA via Company Settings > General, the 2FA toggle can be found under the Security section.
If 2FA is not yet turned on in your personal account settings, a link will guide you to complete this step first.
Once 2FA is enabled, all stakeholders and collaborators in the company will be prompted to enable 2FA when they next log in to their Ledgy account. This applies to all current stakeholders, collaborators, and future recipients of Ledgy invitations.
Important note:
This feature is available in the Enterprise plan.
What if a user loses access to their 2FA authentication device?
The 2FA requirement can be disabled by users using their recovery code. Please note this code is only shown to users upon setting up their 2FA device.
With the recovery code, you can proceed to log in to Ledgy, bypassing the 6-digit authentication by clicking "Use recovery code" or clicking the Reset 2FA button below.
Once the matching email and recovery code have been submitted, you will receive an email confirmation that the 2FA requirement has been disabled for your account.
How do I switch 2FA from one device to another device?
There are two processes for switching 2FA from one device to another. It depends if 2FA is mandatory for all stakeholders or not.
1. If 2FA is not mandatory:
Log in to your Ledgy account, on the bottom-left corner, click on your name and then Settings on the pop-up menu.
Toggle off Two-factor authentication under Login settings and immediately toggle it on again.
A pop-up window will appear to set up 2FA in the authentication app of your choice. You can follow the process already outlined in the section "How do I set up 2FA in Ledgy?".
2. If 2FA is mandatory:
If the Owner of a company account has set 2FA as mandatory for all stakeholders and you want to move 2FA from one device to another, you will not be able to toggle off 2FA in your personal Ledgy account settings. In this case, you will need to reset 2FA via sending your email and recovery code to Ledgy as detailed in the previous section, "What if a user loses access to their 2FA authentication device?". Once the reset is complete, you can re-enable 2FA and set this up using your new device.