Enhance your account security via an industry-standard protection
Why enable 2-Factor Authentication (2FA)?
2FA significantly reduces the risk of unauthorized access to your admin account. Passwords alone can be compromised through phishing, brute-force attacks, or data leaks. With 2FA enabled, a second verification factor (such as a one-time code from an authenticator app) is required before access is granted. This added control protects sensitive customer data, prevents malicious configuration changes, and helps maintain compliance with modern security best practices.
Before you setup 2FA in Graphicsflow...
You will need to use an authenticator app to generate the proper authentication keys for your account. An authenticator app is a tool that generates secure, time-based codes used for login. Each code lasts only 30 seconds, so it’s incredibly hard for anyone else to guess or reuse.
We recommend using one of these authenticator apps:
- Google Authenticator (iOS/Android)
- 1Password
- Microsoft Authenticator
Please refer to their respective documentations if you have any questions regarding their individual functionality.
Once you've picked your app, you're ready to set up a more secure GraphicsFlow experience!
Configuring 2FA
Enabling 2FA on your GraphicsFlow account will impact all team members you have for your license. Owner & Admin team member permissions will only have access to enable or disable 2FA for the account. These are the highest permission levels in GraphicsFlow with no restrictions when managing the account.
2FA settings can be found under Account Settings > Organization
Note that enabling 2FA will automatically log out all accounts. When logging back in, they will be required to set up 2FA. Once setup is complete, they will be required to enter an authentication code at log in.
If you currently have 2FA enabled, choosing to disable it here will remove previous 2FA configurations from all team member accounts. If you then decide to re-enable 2FA again, it will require a fresh setup upon login - previous codes will not be accepted.
Once enabled, you will see this when you next try to log in with an admin account:
Using 2FA
Now that 2FA is set up, logging in with your credentials will have one extra step:
Reset 2 Factor Authentication
If you need to reset your own 2FA, you can find that setting under "My Profile". If you need to assist a team member’s reset, you can find this under My Team action menu depending on your permission level.
Permission based access ensures appropriate security control:
- Owner: Can reset any user’s 2FA.
- Admin: Can reset Admins, Members, and Support, but not the Owner.
- Member: Can reset other Members or Support.
- Support: Can only reset their own 2FA.
System logs will maintain a record of the most recent reset event.
Upon resetting a user's Two-Factor Authentication (2FA), that account will need to re-perform the set up steps with their chosen authenticator details above. An email notification will be sent to confirm the reset.
Comments
0 comments
Please sign in to leave a comment.