About two-factor authentication
Two-factor authorization (2FA) helps protect you by making it more difficult for someone else to sign in to your Achievers account. It uses two different forms of identity: your password, and SMS contact. Even if someone else finds your password, they cannot access your account. Achievers' two-factor authentication allows members who do not use single sign-on (SSO) login to protect their accounts against security breaches by adding an extra layer of security to the authentication process.
Enrolling in two-factor authentication
When you enroll in two-factor authentication (2FA) and use an untrusted device to sign in to your Achievers account, you will receive a security code in an SMS message, making sure you are you before you can complete your log in.
To enroll in 2FA:
- Log in to your recognition program with your username and password. Members who have not yet enrolled in 2FA will see the Two-Factor Authentication
- Click Get Started to begin the enrollment flow.
- Members who are not required to enroll in 2FA can select the Don’t show this again option and click Skip to bypass enrollment. If you do not see these options, you are required to enroll in 2FA. Note that members who are not required to enroll can click Get Started and enroll as well.
- On the SMS (text message) page, select your country. Your country code will then autofill. Enter your mobile phone number. This is the number where you receive your verification code. Click Continue.
- You will receive an SMS (text) message with a 6-digit authentication code. Enter this verification code.
- If you did not receive a code, click Resend. (Note: You will only receive a new code if 10 minutes have passed since you first requested a code. If you click Resend within 10 minutes, the verification code will be the same one).
- If you no longer have access to the phone number the code was sent to, contact your program administrator to reset your 2FA security.
- Once you have entered your verification code, you can choose to trust the device or browser you are using. Click Yes to trust the device. When a device is trusted, you do not need to re-authenticate every time you log in to your recognition program from that trusted device. However, you will need to authenticate again after a certain period of time, depending on your program configuration. For example, you must authenticate again after 60 days.
- You can trust at least two devices. (Note that based on program configuration, some programs may allow you to trust more than two.) A trusted device can be a combination of device and browser. For example, Mac + Chrome = 1 device. Mac + Safari = 2nd
- The Trust this device? option is not available on the Achievers mobile app. Trust this device is available only for the desktop and mobile web versions of your program because the Achievers mobile app allows you to select Quick Login options or to Stay Logged In.
- When your authentication is verified, you are then logged in to your recognition program and your 2FA enrollment is complete. You will receive an email confirming that 2FA is now added to your account.
Now that you are enrolled in two-factor authentication, whenever you log in from a new device or browser, you will be prompted to enter a verification code and will receive an email asking if you are logging in from a new device.
If you are using the Achievers mobile app and you are required to enroll in 2FA, you must log out of your existing session and log in again to authenticate.