Security & Multi-Factor Authentication
Multi-factor authentication (MFA) adds a second verification step when you sign in, protecting your account even if your password is compromised. You can manage your own MFA enrollment and, if you are an admin, enforce MFA across your entire organization.
Setting up MFA for your account
Section titled “Setting up MFA for your account”-
Open Settings and go to the Security tab.
-
Choose an MFA method. Two options are available:
- Authenticator App — use an app such as Google Authenticator or Authy to generate time-based codes.
- Security Key — use a hardware security key or a biometric authenticator built into your device.
-
Follow the on-screen instructions to complete enrollment.
Managing your MFA enrollment
Section titled “Managing your MFA enrollment”Once enrolled, the Security tab shows your active MFA method and its status. You have two options:
- Set up on new device — re-enroll MFA on a different phone or security key without disabling it first.
- Disable MFA — remove MFA from your account. This button is hidden if your organization requires MFA.
Organization MFA Policy (admin only)
Section titled “Organization MFA Policy (admin only)”Administrators with the canManageOrgMFA permission can set an MFA policy for the entire organization.
| Policy | Behavior |
|---|---|
| Off | MFA is available but not promoted. Users can still enable it voluntarily. |
| Recommended | Users see a prompt encouraging them to enable MFA, but they may dismiss it. |
| Required | All users must enroll in MFA. A grace-period date picker lets you set a deadline for enrollment. After the grace period expires, users without MFA will be required to enroll before they can access the dashboard. |
After selecting a policy, click Save Policy to apply it.
Enrollment Status (admin only)
Section titled “Enrollment Status (admin only)”Below the policy settings, administrators can see an overview of MFA adoption across the organization:
- A summary showing how many users are enrolled out of the total (for example, “3 of 5 users enrolled”) with a ring progress indicator.
- A per-user table listing each user, their enrollment status, and a Reset MFA action to clear a user’s enrollment so they can set it up again.
Changing your password
Section titled “Changing your password”The Security tab also includes a Change Password button. Clicking it redirects you to the General tab where you can update your password.