What is 2FA?
Two-Factor Authentication, or 2FA in short, is an extra layer of security used when logging in to websites or apps. With 2FA, you have to log in with your username and password and provide another form of authentication that only you know or have access to.
wayahead highly recommends enabling 2FA on your account. While passwords in wayahead are stored in a safe way, we can not stop users from using the same password on multiple websites. Hackers are clever cookies. When they get a hold of your password through a leak, they will try your email password combination on thousands of websites, until they get a hit. Enabling 2FA is the easiest way to ruin a hacker's day.
Sounds great! How do I get it?
Well. There is no I in TEAM, right! Whether or not you use 2FA is not a personal preference, but a company preference. The wayahead administrator can decide to enable 2FA on the wayahead account for every user in the company. This is done via the Reporting Preferences > Two Factor Authentication.
What happens when 2FA is enabled?
You log in to wayahead like always, using your email/password combination. If those are correct, wayahead will send the user an email like this:
This email has a 6 digit code as well as a time stamp right down at the bottom to help you identify you have the very last version.
Next, the user is automatically redirected to the authentication page:
Copy the code from the mail into the page and click log in. After you successfully enter your code, the app automatically redirects you to the home page or to your favourite report (as defined in your profile).
Once you have successfully authenticated, you can keep using wayahead without having to re-authenticate. Re-authentication will be required only after you sign out of the app OR if your session has timed out.
Troubleshooting
The code is a simple 6 number code.
You'll end up with multiple emails. Make sure you use the very last email sent to you.
If you didn't receive the first email, you can click "Request another code".
You can refresh the page all you want. You will not receive a new email unless you log out and log in again.
If you try to access another page in wayahead before you enter a valid code, wayahead will automatically issue a new code (e.g. when you click a link from the knowledge base before you have completed).
If you try to enter a wrong code more than 10 times, it's game over. You'll need to log out and log in to start all over again. wayahead support is automatically notified of any suspicious behaviour.
When try to log in on two devices: Let's say you log in successfully on your computer and then also load wayahead on an other machine. The 2FA process will start over and you have to authenticate on the new device. Note that if you refresh a page on the first computer before the code was entered on the second, that will reset the users's 2FA and you'll need to request a new code from the second device before you can log in. Once you're logged in fine on both devices you can use them both simultaneously.