To ensure the security of sensitive data within Smokeball on your device you can set up Two-Factor Authentication as an optional selection per staff member.
Smokeball Desktop App
Two-Factor Authentication can be managed via the individual users' Staff card.Â
Only the logged in staff member can set up 2FA for themselves.Â
Once Set Up is selected, the user will be required to complete a number of steps in verifying their identity, including:Â
-
Smokeball password
-
Mobile phone verification Â
-
Authenticator app code
Any Authenticator App you already have should work. If you don't have one, we recommend Google Authenticator.
Each step will contain instructions. Once setup is complete, the user will now have Two-Factor Authentication set up on their account and be required to authenticate on every login going forward.Â
A user with 2FA set up will have a green tick in the 2FA column
Smokeball Web App
To enable Two-Factor Authentication on the Smokeball Web App:
- Select the gear icon on the top-right corner of the Smokeball Web App, then select My Preferences.
- Select Account Security from the left panel.
- Select Enable 2FA under the Two-Factor Authentication section.
- Follow the prompts in the Two-Factor Authentication setup wizard. You will be required to provide the following information in order to verify your identity and set up Two-Factor Authentication:Â
- Smokeball password
- Mobile phone number
- Authenticator app
- Any authenticator app you already have should work. If you don't currently have one, we provide a QR code for you to download Google Authenticator from the iOS Store or Google Play Store.
Working with 2FA
Once Two-Factor Authentication has been enabled for your account, you must verify yourself each time you log in to Smokeball on any device.
Good to Know
- For security reasons, you are required to verify yourself every time you log in.
- There is no option to remember your device.
- You can view your colleagues' 2FA status in the staff and users tab, but their personal information will not be visible.
- You must enable 2FA for yourself only.
- We recommend using the Google Authenticator app for authentication, but any authenticator app will work.
- After your first login, your login credentials will expire after six months.
- You will receive a notification seven days before the password expiry, prompting you to reset your password. If you fail to reset your password, you will receive a notification indicating that you are working offline and need to reset your password.
- If you have lost your 2FA device or do not have access to the authenticator, contact our Support Team to regain access to your account.