Managing Account Security

The Account security tab allows you to manage how team members authenticate and access your company account. These settings help protect sensitive company and supply chain data.

You can access this section from Account settings → Account security.

Enforcing Two-Factor Authentication (2FA)

Two-factor authentication adds an extra layer of security to your account. In addition to a username and password, users must enter a verification code generated by an authenticator app.

You can choose between three options.

Don’t enforce Two-factor Authentication

Users can decide individually whether to enable 2FA on their account.

Enforce Two-factor Authentication for Owners only

Only users with the Owner role are required to use 2FA.

Enforce Two-factor Authentication for all members

All team members must use 2FA when logging in.

If enforcement is enabled, users who have not configured 2FA will be prompted to set it up the next time they log in.

Important

If your company uses Single Sign-On (SSO), two-factor authentication should be configured in your identity provider, not within the platform.

Best practices

To improve account security:

• Enforce 2FA at least for Owners

• For higher security standards, enforce 2FA for all members

• Regularly review active users in the Team members section

Using two-factor authentication significantly reduces the risk of unauthorised access to your account.