Skip to main content

Overview

Two-Factor Authentication (2FA) adds an extra layer of security to your Userpilot account by requiring users to verify their identity using a passcode generated from an authentication app (such as Google Authenticator, 1Password, or Authy).
This ensures that even if a password is compromised, your workspace remains protected.

Use cases

  1. You want to enhance workspace security across all teammates
  2. You are working with sensitive product data or customer information
  3. You are required to meet internal compliance or security guidelines
  4. You use SSO and want an additional verification layer
  5. You want to ensure only verified users access your Userpilot setup

Enable 2FA

  1. You can enable 2FA settings from Settings → Team → Authentication → Mandatory Two-Factor Authentication
  2. Toggle “Require all teammates to authenticate via 2FA” on
    By default, 2FA is not required, and teammates can log in normally. Admins can choose to enforce it for the entire team
    Screenshot2025 12 14at10 45 54 Pn
  3. Once enabled:
    • All existing teammates will receive an invitation to enroll in 2FA
    • New teammates will be required to set up 2FA immediately after creating their password
    Screenshot2025 12 14at10 51 04 Pn Screenshot2025 12 14at10 53 31 Pn
    • Users can’t access the workspace until they complete their 2FA setup
    • A 2FA icon appears next to their name in the Teammates table
    Screenshot2025 12 14at11 02 46 Pn
Admins can disable 2FA for a teammate if the user is locked out of their account. For example, after losing access to their authentication device.Screenshot2025 12 14at11 04 10 Pn
Note:
Team members can enable Two-Factor Authentication from Settings → User by scanning a QR code and activating 2FA on their account.However, if an admin has enforced mandatory 2FA for the entire workspace, users will not be able to disable it themselves. Only admins have permission to disable 2FA for a teammate.Screenshot2025sss12 14at11 22 08 Pn