All Collections
Account settings and admin
Account settings
Secure your account with two-factor authentication
Secure your account with two-factor authentication

An extra layer of security used to make sure that anyone trying to access your account is who they say they are.

Laura Russell avatar
Written by Laura Russell
Updated over a week ago

Two-factor authentication works by sending a verification SMS message on login to the mobile number stored against the user account in Dotdigital.

Before you start

Things you need to know:

  • You must be the account owner to set up two-factor authentication for an account.

  • You can’t use two-factor authentication SMS codes if you have single sign-on (SSO) enabled for your account.

How two-factor authentication works

Once two-factor authentication is enabled, we ask you to verify your log in:

  • when you log in to your account from a device or a browser that has not been used before.

  • when you log in using a browser or device where cookies have been cleared since you last logged in.

  • if it has been more than 30 days since you last logged in.

We use a cookie to check whether you have previously logged in with the same device or browser. This cookie has an expiry period of 30 days, which is reset with each successful login.

After you enter your username and password on the login page, we send you a text message containing a unique one-time authentication passcode. You must then enter the passcode to verify your identity.

Set up two-factor authentication

To set up two-factor authentication on your account:

  1. Expand the User menu and select Settings.

  2. Go to General > Account settings.

  3. Under the heading Security, select the Two-factor authentication checkbox.

  4. A window opens and you are prompted to enter a mobile number for any account users who do not currently have one stored against their profile. This is because two-factor authentication is activated at account level, so all users of the account need to be able to receive SMS verification messages.

    If all account users already have a mobile number associated with them, then you instead see the Authentication mobile number field to allow you to confirm or update your own mobile number.

  5. Select [Add mobile number] and enter a mobile number for a user, then select SAVE.
    If you want to, you can select Send an SMS test to send a test message to your own mobile number once you have entered it.

  6. Once you have added mobile numbers for all requested users, select CONTINUE.

  7. Select SAVE SETTINGS.

Add or edit a mobile number on your user profile

If you are a user on an account with two-factor authentication enabled, you must ensure that you keep a valid mobile number on your profile so that you are able to verify your login when requested.

User mobile numbers

Once two-factor authentication has been set up on an account, the account owner is not able to edit or add mobile numbers for other account users. Only the user themselves can edit their user profile. If a user removes or fails to update their mobile number and therefore cannot access the account, they need to contact the support team to restore their access.

To add or edit a mobile number for your user profile:

  1. Expand the User menu and select Your profile.

  2. Select the edit icon.

  3. Enter the mobile number that you want us to send your passcodes to.

  4. Select SAVE.

Turn off two-factor authentication

To ensure the security of your account, if you want to turn off two-factor authentication, you must contact the support team.

Log in using two-factor authentication

If you meet the criteria for a two-factor authentication challenge, then the login process looks like this:

  1. Go to the login page.

  2. Enter your email address and password, then select LOG IN.

  3. Once you've successfully entered your details, we send an authentication passcode to your registered mobile phone number. In the Verification code box, enter your unique authentication passcode, then select VERIFY LOGIN.

Not receiving the verification SMS

If you don't receive your verification SMS, try restarting your device. This can prompt the message to be delivered to you. If that doesn't work, you can contact our Support team for further help.

Did this answer your question?