To ensure the security of sensitive data within Smokeball on your device and to comply with regulations in some states, we offer Two-Factor Authentication as an optional feature for staff members.
Setting Up Two-Factor Authentication
Smokeball Desktop App
Two-Factor Authentication can be managed via the individual users' staff card:
- Open the Smokeball desktop app and select the gear icon on the top-right corner to access Smokeball Settings.
- Select Staff & Users and double-click on the staff member's name.
- In the Edit Staff Member window, navigate to the Security section and click on Set up.
- Follow the prompts in the Two-Factor Authentication setup wizard. You will be required to provide the following information in order to verify your identity and set up Two-Factor Authentication:
- Smokeball password
- Mobile phone number
- Authenticator app
- Any authenticator app you already have should work. If you don't currently have one, we provide a QR code for you to download Google Authenticator from the iOS Store or Google Play Store.
Once setup is complete, you will now have Two-Factor Authentication set up on your account. You will be required to authenticate on login going forward.
Check who has enabled Two-Factor Authentication in your firm
If you're a Firm Owner, go to the Staff and Users tab to view your staff's Two-Factor Authentication status. Staff members who have successfully set up Two-Factor Authentication will have a green tick to their name.
Opening a staff card also displays their Two-Factor Authentication status, but personal information such as the device used and the verification code will not be visible.
Smokeball Web App
To enable Two-Factor Authentication on the Smokeball Web App:
- Select the gear icon on the top-right corner of the Smokeball Web App, then select My Preferences.
- Select Account Security from the left panel.
- Select Enable 2FA under the Two-Factor Authentication section.
- Follow the prompts in the Two-Factor Authentication setup wizard. You will be required to provide the following information in order to verify your identity and set up Two-Factor Authentication:
- Smokeball password
- Mobile phone number
- Authenticator app
- Any authenticator app you already have should work. If you don't currently have one, we provide a QR code for you to download Google Authenticator from the iOS Store or Google Play Store.
Working with Two-Factor Authentication
Once Two-Factor Authentication has been enabled for your account, you must verify yourself each time you log in to Smokeball via the desktop and web apps.
For security reasons, you are required to verify yourself every time you log in. There is no option to remember your device.
Important notes around Smokeball account security
- You must enable Two-Factor Authentication for yourself only.
- After your first login, your login credentials will expire after six months.
- You will receive a notification seven days before the password expiry, prompting you to reset your password. If you fail to reset your password, you will receive a notification indicating that you are working offline and need to reset your password.
- If you have lost your Two-Factor Authentication device or do not have access to the authenticator, contact our Support Team to regain access to your account.