Skip to main content

How to set up and use 2FA (two-factor authentication)?

2FA is a method of confirming a user’s claimed identity through two different factors to increase the security of your account.

Frances Agoncillo avatar
Written by Frances Agoncillo
Updated over 2 weeks ago

Introduction

Two-factor authentication (2FA) enhances your account security by requiring two forms of verification: your password and an authentication code. In this article, we’ll guide you through setting up 2FA on your Ledgy account, explain how company owners can enforce 2FA for all stakeholders, and provide solutions for switching devices or recovering access if you lose your authentication device.

How do I set up 2FA in Ledgy?

Two-factor authentication (2FA) enhances your account security by requiring two separate forms of verification to confirm your identity: your password and an authentication code. In Ledgy, this ensures an extra layer of protection for your account.


To set up 2FA on your personal Ledgy account, click on your name in the bottom left corner of your Ledgy and select Settings from the pop-up menu.

Then under the Login settings section, you will find a toggle to set up two-factor authentication.

Once the toggle is activated, a pop-up will guide you through the setup process. You will need to download an authenticator app on your smartphone and scan the QR code provided. Once this is complete, you'll use the authenticator app to generate a code each time you log in.

Some compatible authenticator apps include:

Important note! Please ensure you save the recovery code in a secure location. You will need this code to reset your 2FA if you ever lose access to your device with the authentication app. Best Practices for Recovery Code Storage:

  • Save your recovery code in a safe and easily accessible location, such as a password manager or a secure physical document storage.

  • Avoid sharing your recovery codes or storing them in unsecured locations like plain text files.

Can I make it mandatory for all stakeholders in my company to use 2FA when using Ledgy?


For companies, Owner-level collaborators can turn on two-factor authentication for all stakeholders and collaborators by default which will enforce 2FA as a login requirement.



If you are an owner-level collaborator, you can turn on 2FA via Company Settings > General, the 2FA toggle can be found under the Security section.

If 2FA is not yet turned on in your personal account settings, a link will guide you to complete this step first.


​Once 2FA is enabled, all stakeholders and collaborators in the company will be prompted to enable 2FA when they next log in to their Ledgy account. This applies to all current stakeholders, collaborators, and future recipients of Ledgy invitations.

Important note:

This feature is available in the Enterprise plan.

What if a user loses access to their 2FA authentication device or codes?

The 2FA requirement can be disabled by users using their recovery code. Please note this code is only shown to users upon setting up their 2FA device.

With the recovery code, you can proceed to log in to Ledgy, bypassing the 6-digit authentication by clicking "Use recovery code" or clicking the Reset 2FA button below.

Reset 2FA

Once the matching email and recovery code have been submitted, you will receive an email confirmation that the 2FA requirement has been disabled for your account.

How do I switch 2FA from one device to another device?

There are two processes for switching 2FA from one device to another. It depends if 2FA is mandatory for all stakeholders or not.

1. If 2FA is not mandatory:

Log in to your Ledgy account, on the bottom-left corner, click on your name and then Settings on the pop-up menu.

Toggle off Two-factor authentication under Login settings and immediately toggle it on again.

A pop-up window will appear to set up 2FA in the authentication app of your choice. You can follow the process already outlined in the section "How do I set up 2FA in Ledgy?".

2. If 2FA is mandatory:

If the Owner of a company account has set 2FA as mandatory for all stakeholders and you want to move 2FA from one device to another, you will not be able to toggle off 2FA in your personal Ledgy account settings. In this case, you will need to reset 2FA via sending your email and recovery code to Ledgy as detailed in the previous section, "What if a user loses access to their 2FA authentication device?". Once the reset is complete, you can re-enable 2FA and set this up using your new device.

Steps to Reset Two-Factor Authentication (2FA) if You've Lost Your Recovery Code

If you've lost your recovery code and need to reset your 2FA, follow these steps:

1. Contact Ledgy Support

Email [email protected] with the following information:

Subject: 2FA Reset Request

Email body:

Hello,

I have lost my recovery code and need to reset my 2FA.

My account details are:

- Email address: [your email]

- Company name: [your company name]

Thank you,

[Your name]

Important: The email address and company name must match the information on your Ledgy account.

2. Complete the Identity Verification Process

  • You'll receive a secure verification link from Ledgy

  • Using your mobile phone, complete the verification by providing valid government-issued identification

  • This step ensures the request is from the rightful account owner

3. 2FA Reset Completion

Once your identity is successfully verified, the Ledgy support team will reset the 2FA on your account. You'll then be able to log in using only your email and password, and can set up 2FA again if desired


FAQs

What happens if I delete the authenticator app from my phone by accident?

If you accidentally delete your authenticator app, you won't be able to generate authentication codes for login. You'll need to use your recovery code to reset your 2FA by following the process outlined in "What if I lose access to my 2FA authentication device?" above. After resetting, you can reinstall the authenticator app and set up 2FA again.

What should I do if I'm getting an "invalid code" error when entering my authentication code?

Wait for a new code: Authentication codes refresh every 30 seconds. Wait for a fresh code to appear before entering it

Old codes in your authenticator app: If you previously set up two-factor authentication and are trying again, your authenticator app may still have old codes stored. Try removing the old entry from your authenticator app and adding a fresh one.

Verify you're using the correct account: If you have multiple accounts in your authenticator app, make sure you're copying the code from the correct Ledgy account entry

Will enabling mandatory 2FA lock out users who don't set it up immediately?

No, enabling mandatory 2FA doesn't immediately lock out existing users. When you turn on company-wide 2FA enforcement, all stakeholders and collaborators will be prompted to set up 2FA the next time they log in to Ledgy. They'll be guided through the setup process and won't be able to access their account until they complete it, but they won't be locked out permanently.

Can company owners see or access my recovery code?

No, company owners cannot see or access your personal recovery code. Your recovery code is private and only displayed to you when you set up 2FA. Ledgy staff also cannot retrieve your recovery code for you. This is why it's critical to save your recovery code securely when you first set up 2FA.

Still having trouble? Contact us at [email protected] with details and a screenshot of the error and we'll help you get this sorted.

Related Articles
Set up Single Sign-On (SSO) for secure authentication
How do I connect my HiBob account?
How do I connect my BambooHR account?
How do I connect my Humaans account?
How do I connect my Lucca account?
Did this answer your question?