Two-factor authentication, or 2FA, is an extra layer of protection used to ensure the security of REACH admin accounts beyond just the username and password. 

Why Two-Factor Authentication?#

Two-factor authentication strengthens REACH admin access security by requiring two methods to verify your identity. 

For REACH, these factors include something you know – your username and password -plus something you have – like a smartphone app and text messaging – to approve authentication requests. 

By integrating 2FA with REACH, if attackers are able to access your account with your username and password but do not possess your physical device needed to complete the second authentication factor, they will not be able to hack into your account. 

For REACH, based on your initial setup, this second authentication factor will either be:

• A one-time QR code generated from an Authenticator App; or,
• A one-time sms code send to your mobile device

Is Two-Factor Authentication Required?#

2FA is strongly recommended for all REACH admin accounts, but is not currently required by REACH.

However, you as an organization, can choose to Require all admins within your organization to use two factor authentication by checking the box under Settings > Account Rules > Security.

How to Setup 2FA#

First, sign into your individual Admin Account. 

Note: If multiple people sign using one Admin Account and you have 2FA enabled, each person would need access to the same 2FA authentication factor method.

At the top right, click on your Profile, and then on Change Password/Info. 

Click on the blue Set Up Two-Factor Authentication button

You will be given two options:

1. Set up using the Authenticator App (Most Secure Option)
2. Set up using SMS

Select your option and click on Continue.

Authenticator App (Most Secure Option)#

Important Note: For this option, you must install an Authenticator App on your phone. We recommend Authy (Download on Google Play or Download in the App Store) or Google Authenticator (Download on Google Play or Download in the App Store). This process will not work by simply scanning the QR Code using your mobile phone’s camera. 

For the Authenticator App, you will be asked to Scan the QR code below with the authenticator app (Authy or Google Authenicator), then click Continue. 

After successfully setting up Two-Factor Authentication, you will be provided a set of Backup Codes. 

We advise you print or copy these backup codes and keep them in a safe place in case you lose access to your phone. They will NOT be displayed again. 

Be sure to click on Done to complete the Two-Factor process. 

SMS Option#

For the text messaging option, you are required to have a mobile number stored on your admin account. 

Click the Send Verification Code button to send a text to verify your admin phone number. 

A one-time code will be sent to your mobile device. 

Enter that code onto the next screen in the space provided.

Click Verify.

Once Verified, you will be provided with a set of Two-Factor Backup Codes. 

We advise you print or copy these backup codes and keep them in a safe place in case you lose access to your phone. They will NOT be displayed again. 

Be sure to click on Done to complete the Two-Factor process. 

Disabling Two-Factor #

To Disable Two-Factor Authentication, click on the Disable Two-Factor Authentication button from the Change Password/Info screen. 

We do not recommend this option.