HR Two-Factor authentication (2FA)

Overview

When using a username and password to log into your account, you are only using single-factor authentication. This process is susceptible to security threats because it represents a single piece of information a malicious person requires.

Employment Hero allows you to enable two-factor authentication for your account, requiring two verification steps before you can access your account. This additional step is an authentication code sent as a text message (SMS) or via an authentication app.

Once enabled, your account generates a unique authentication code any time there is a sign-in attempt from an unrecognised device. To sign into your account, it will require you to know both the password and have access to the authentication code sent as a text message (SMS) or via an authentication app.

Important

You can enable mandatory two-factor authentication from your employment settings page. To read further details on how to access this feature refer to this article.

If one of your employees has trouble accessing their account with Two-Factor Authentication enabled, you can reset their Two-Factor Authentication access via the Security Report feature. To read further information on this feature refer to the following article

If you are an account owner, administrator, or user with access to other employees' superannuation/tax information, we require you to enable two-factor authentication to access this information. This is because of the ATO's updated digital service provider operational framework. You can find more information here.

HR Best Practice

Enabling 2FA delivers an extra layer of protection for your user accounts that will decrease the risk of unauthorised access and system breaches.

Availability

HR Plan:   Free   Standard   Premium   Platinum
Payroll Plan:   Standard   Premium

Getting Started

Enabling two-factor authentication: Authenticator app

Important

Employment Hero users on a standard, premium and/or platinum plan can use two-factor authentication via an authenticator app or SMS. Employment Hero users on a Free plan will only be able to use two-factor authentication via an authentication app.

  1. Click the User drop-down.
  2. Click on the Account Settings button.
  3. In the Two-Factor Authentication section, click the Setup button.
    Two_Factor_1.jpg
  4. Select the Through an authentication app option.
  5. Click the Continue button.
    Two_Factor_2.jpg
  6. Scan the QR code using your authenticator app.
  7. Click the Continue button.
    Two_Factor_3.jpg
  8. Type the code number from your authentication app into the Text field.
  9. Click the Continue button.
    Two_Factor_4.jpg
  10. For your recovery code, select from the following options:
    • Download.
    • Print.
    • Copy.
  11. Click the Done button.
    Two_Factor_5.jpg
  12. Click the Yes button.

    Important

    If you no longer have access to your phone and can not access an authenticator service via text and/or an app, you can use the recovery code to sign in. Please store this code in a safe place.

    Two_Factor_6.jpg
Enabling two-factor authentication: Text message

Important

Employment Hero users on a Standard or Premium plan can use two-factor authentication via an authenticator app or SMS. Employment Hero users on a Free plan will only be able to use Two-Factor Authentication via an authentication app.

  1. Click the User drop-down.
  2. Click on the Account Settings button.
  3. In the Two-Factor Authentication section, click the Setup button.
    Two_Factor_1.jpg
  4. Select the Through SMS Text Messages option.
  5. Click the Continue button.
    Two_Factor_7.jpg
  6. Select your phone region via the Country drop-down.
  7. Type your phone number into the Phone Number field.
  8. Click the Continue button.
    Two_Factor_8.jpg
  9. Type the verification code sent via text message into the Verification Code field.
  10. Click the Continue button.
    Two_Factor_9.jpg
  11. For your recovery code, select from the following options:
    • Download.
    • Print.
    • Copy.
  12. Click the Done button.
    Two_Factor_10.jpg
  13. Click the Yes button.

    Important

    If you no longer have access to your phone or otherwise can't access codes via text or the authenticator app, you can use the recovery code to sign in. Please store this code in a safe place.

    Two_Factor_11.jpg

Maintain

Editing my recovering question
  1. Click the User drop-down.
  2. Click on the Account Settings button.
  3. Click the Edit button.
    Two_Factor_14.jpg
  4. Complete the following fields:
    • Recovery question.
    • Recovery answer.
    • Current password.
  5. Click the Save button.
    Two_Factor_15.jpg
Disabling two-factor authentication
  1. Click the User drop-down.
  2. Click on the Account Settings button.
  3. Click the Disable button.
    Two_Factor_12.jpg
  4. Enter your password and click the Continue button.
    Two_Factor_13.jpg

Further information

What happens if I lose my phone?

If you lose access to your two-factor authentication device, e.g. you lose your phone, you can still log in to your account. When prompted for your authentication code, enter your recovery code shown during the two-factor authentication setup.

Once you have logged in to your account, update your two-factor authentication information.

What happens if I change my phone number?

If you change to a new phone number, you will need to disable two-factor authentication and then re-enable two-factor authentication using your new number.

What is an authenticator app?

Rather than having a code sent to you via SMS when you sign in, an authenticator app on your phone can generate a code. You can enter this into Employment Hero the same way as with texted codes.

Authenticator apps do not have access to your Employment Hero account or your personal/sensitive information.

Have more questions? Submit a request

Comments

0 comments

Article is closed for comments.