Everyone wants their data to be safe, but signing in to an app for every session, juggling login details and authentication codes can be cumbersome. Perhaps it's why not al companies enable 2-factor authentication (2FA) on their account, even though it’s one of the best ways to block unauthorised access.

To make security easier, wayahead supports biometric authentication, meaning you can use a fingerprint or face recognition to authenticate. This means you stay protected without having to sign in over and over again.

While 2FA was just optional until now, with each company administrator able to turn it on or off for all users, it will become the default around early July 2026.

Using 2FA the sign in workflow looks like this:

Biometrics will replace the email code and will instead let you sign in using your finger print. In other words, it's still a 2-factor authentication (password + fingerprint), but on most computers it's going to be a lot easier than it was before.

Note that as long as you don't have biometrics enabled, provided it's available on your computer, wayahead will prompt you to do so every 90 days. If you don't want it, just decline and you won't be asked again for 3 months. This persistence is built in on purpose to optimise security.

When you sign in to wayahead, you'll need to follow the regular sign up procedure. For companies that have 2FA enabled, you'll still need to enter the 2FA code in the authentication page. For users without 2FA, you are allowed to enter the app straight away.

In case biometrics are available on your computer and not set up, wayahead will prompt you to configure it:

You will see this prompt on the 2-factor authentication page – right after you enter a correct code, but before you are redirected to the app – OR on the dashboard (index) page.

Choose a name for your computer and click enable, then follow the steps. You'll be asked to set up the fingerprint authentication.

Press cancel to be reminded later (the dialog will pop up again in 90 days).

Once biometrics are configured, the sign in procedure is slightly different:

Whenever you are signed in, wayahead remembers that in your session data. As long as there is activity on your account, your session will stay active. But if you have been inactive for too long, you need to sign in again.
If biometrics are enabled, wayahead will redirect you to a 'reauthentication' page where you'll be asked to enter your fingerprint. If you cancel, you are logged out and you end up on the login page again. But if you authenticate, you are automatically signed in again and you can keep going.

I didn't get the automated prompt. Can I turn it on manually?

Yes, you can – provided biometric authentication is available on your computer. Just go to the Profile page, click on Biometric Authentication and click the button to enable it on this device.

Good question. It's true that not all computers allow this, especially desktop computers often don't offer the functionality. wayahead will detect if biometric authentication is available on your computer. If not, it will simply return to the classic 2FA email code.

Biometric authentication is configured for each computer separately. When you set it up, you can name the computer you're working on, allowing you to distinguish between machines later on. This allows you to delete authentication for selected machines later on.

Yes you can. Just go to your Profile page and click on Biometric Authentication. You'll see a list of all the devices you have configured it on and you can delete devices from that list.

Correct. Biometric authentication is stored for each device, but also for each domain. If you are ever asked or allowed to use the wayahead test app (testing.wayahead.app), biometrics for the live app (wayahead.app) don't apply here. You'll need to set it up again for the test app.