Set up Two Factor Authentication (2FA)

Modified on: Tue, 2 Jul, 2024 at 9:20 AM

Two-factor authentication (2FA), also known as multi-factor authentication (MFA), is a security mechanism that requires two or more forms of identification to access an account. This is different from traditional authentication, which only requires a password.

To ensure the security of sensitive data within triConvey and to comply with regulations in some states, we have introduced Two Factor Authentication as an optional feature for staff members.

Getting Started
Setting Up Two Factor Authentication
Working with Two Factor Authentication
Check who has enabled Two Factor Authentication in your firm
Frequently Asked Questions

Getting Started

The individual user must enable Two Factor Authentication for themselves only.

Setting Up Two Factor Authentication

1. Select the gear icon from the top-right corner of the triConvey Desktop App.

2. Select Staff & Users and double-click on the staff member's name.

3. Scroll down to the Security section and click Set up.

4. Follow the prompts in the Two Factor Authentication setup wizard.

5. Enter your triConvey password.

6. Enter your mobile phone number.

7. You will receive an SMS from triConvey with a 6-digit code. Enter this code in the window.

8. You will be presented with two QR codes. Choose between iOS or Android to download Google Authenticator to your device. Select Next if you already have an Authenticator app installed on your device.

9. On your Authenticator app, choose the option to Scan a QR code. Point your device at the QR code on the screen. Select Next.

10. Enter the code displayed in your Authenticator app.

Tip: The code will change to a new one after a short period of time.

11. If the code is successful, you will receive a confirmation prompt. After this, you can close the window.

Once setup is complete, you will now have Two-Factor Authentication enabled. You will be required to authenticate on login going forward.

1. Select the gear icon from the bottom-left corner.

2. Select My Preferences.

3. From Account Security, select Enable 2FA under the Two-Factor Authentication section.

4. Follow the prompts in the Two-Factor Authentication setup wizard.

5. Enter your triConvey password.

6. Enter your mobile phone number.

7. You will receive an SMS from triConvey with a 6-digit code. Enter this code in the window.

9. On your Authenticator app, choose the option to Scan a QR code. Point your device at the QR code on the screen. Select Next.

10. Enter the code displayed in your Authenticator app.

Tip: The code will change to a new one after a short period of time.

11. If the code is successful, you will receive a confirmation prompt. After this, you can close the window.

Once setup is complete, you will now have Two-Factor Authentication enabled. You will be required to authenticate on login going forward.

Working with Two Factor Authentication

Once Two Factor Authentication has been enabled for your account, you must verify yourself each time you log in to triConvey via the desktop and web app.

For security reasons, you are required to verify yourself every time you log in. There is no option to remember your device.

Check who has enabled Two Factor Authentication in your firm

Only a Firm Owner is able to view which staff members have Two Factor Authentication enabled.

1. Select the gear icon from the top-right corner of the triConvey Desktop App.

2. Select Staff & Users.

3. Navigate across to the 2FA column to view your staff's Two Factor Authentication status.

Tip:  Staff members who have successfully set up Two Factor Authentication will have a green tick next to their name.

4. Opening a staff card also displays their Two Factor Authentication status but personal information such as the device used and the verification code will not be visible.

Frequently Asked Questions

How long will my login credentials last?

After your first login, your login credentials will expire after six months.

Will I be prompted to change my password closer to the expiry period?

You will receive a notification seven days before the password expiry, prompting you to reset your password. If you fail to reset your password, you will receive a notification indicating that you are working offline and need to reset your password.

What should I do if I have lost or damaged my 2FA device?

If you lose or break the device you set up 2FA on, contact our Support Team to disable 2FA on your account. This is to prevent unauthorised access to your account if someone else finds your lost or stolen phone. Once 2FA is disabled, you can set it up again on a new device.

Why should I set up 2FA?

2FA adds extra security by requiring a second form of authentication that only you, the account owner, possess, such as a mobile device. This means that even if someone knows your password, they won't be able to access your account without it. It's a more secure method of protecting your account from unauthorised access.

How does 2FA in triConvey work?

After entering your password, triConvey will prompt you for a code generated by an authenticator app on your mobile device. The authenticator app frequently generates a new code. To log in to triConvey , enter the current code from the authenticator app.

Can I turn off 2FA?

You can turn off 2FA if you have not integrated Xero with triConvey. However, we don't recommend it, as it provides an additional layer of security that can help protect your account.

Am I required to set up 2FA if I use Xero?

From June 10, if your firm has the Xero integration enabled, you must enable triConvey two-factor authentication on your account to continue syncing invoices to Xero.

What do I do if triConvey is not accepting my code?

If you are frequently experiencing an "Invalid Code" error when entering your verification code, ensure that the time on your mobile device and Windows/Mac device is in sync. 2FA is sensitive to time differences, even by a few seconds.