Password & two-factor authentication
Strong passwords and 2FA setup.
Overview
Strong passwords are required. 2FA is optional for residents and recommended (or required by policy) for staff.
Who uses this
Every user.
Open the feature
Profile → Security.
Step-by-step
- Click Change password.
- Enable Two-factor authentication and scan the QR with an authenticator app (Authy, Google Authenticator, 1Password).
- Save your backup codes in a safe place.
- (Admin policy) Force 2FA on staff roles from Security settings.
Settings & permissions
Self-service for users; admins set policy.
Multi-building tips
2FA covers your whole account, not per building.
Notifications
Password changes and 2FA changes trigger an email alert.
Reports & exports
—
Troubleshooting
- Lost authenticator. Use a backup code, or contact an administrator to reset.
FAQ
Do you support hardware keys? YubiKey/WebAuthn is on the roadmap.
Glossary
- TOTP — time-based one-time password.
Related articles
- Profile — Update your name, contact info, and unit.
- Data & privacy — What we store, who sees it, how to export or delete.
Was this article helpful?
