Product update: two-factor authentication is now available to users

The two-factor authentication (or 2FA) brings an extra level of security for logging into ApprovalMax because apart from your email address and password you’ll also need a one-off verification code that’s either generated on your mobile or sent to the alternative email address you’re asked to provide.

This feature is optional, it can be activated in the user’s profile. To enable 2FA, scan the displayed QR code with an authenticator app (e.g. Google Authenticator), which will then generate a code that has to be entered in the web interface. Next, you’ll be prompted for an additional email address (not the one you use for logging into ApprovalMax) as a backup. We’ll email a code to that address; entering it in the web interface will switch on the two-factor authentication.

From then on, you’ll have to enter a one-off verification code (either generated by the authenticator app or sent to the alternative email address) every time you want to log into ApprovalMax as well as your email address and password. This reduces significantly the chances of anyone but you getting access to your ApprovalMax account.

While this feature is optional in ApprovalMax, it might be mandatory according to the security policy of your organisation. Also, it is obligatory for all users in Australia due to the ATO requirements for digital service providers.

You’ll find more details on how to enable 2FA for your account in our Knowledge Base article.