Two-factor authentication (2FA) requires that every user identify themselves in two unique ways to gain access to the system. Even if someone manages to find out your password, they would need to not only know how the second authentication system works (e.g., text message verification) but also be able to access it.

Atera supports 2FA via some of the most popular authenticator apps like Google Authenticator, Authy, Duo, and Microsoft Authenticator, which can be downloaded from Google Play, the App Store, or as a Chrome extension on your computer. Atera's integration with Auth0 allows for biometric scanning, and so much more!

Notes:

• If you use Duo or Microsoft Authenticator, you'll need to select 'Other' when adding an account to the authenticator app.
• For added security, 2FA is automatically enforced one day after you become a paying customer.
• The 2FA module cannot be turned off; it is a mandatory security feature.
• In case you need a 2FA reset and there are no other available technicians to do it, please get in touch with our support team via chat, as this ensures the fastest resolution.

Set Up 2FA

The 2FA login process can be set by your company's admin. See a video on how to set up your 2FA

To set up 2FA:

1. Go to Admin > Users and security > Security and authentication.

The Security and Authentication page appears.

Note: Safari web browser users may need to 'allow' pop-ups for app.atera.com

Here you can enable or reset 2FA per individual. Filter by name, role, and/or 2FA status.

For an added layer of security, we recommend checking the Access List, where you can specify which IPs are allowed platform access.

Log in with 2FA

Once a company admin has set up (2FA), the new process takes effect at the user's next login. 

To log in with 2FA:

1. Log in to the Atera app with your email address. Then click Continue.

2. On the next screen, add your password and click on Continue.

3. You will be prompted to scan a unique QR code with your mobile phone.

4. After scanning your unique QR code from your Authenticator app, add the code to the Enter your one-time code field. Then click Continue.

5. You will be prompted to copy the Recovery code and confirm the fact that you have safely recorded this code.

Note: In case you can't access your phone, you can enter the code in place of the authenticator app code. Failure to do so can result in being locked out of your account. For security reasons, restoration of account access by Atera support is a lengthy process.

Enable biometric login

You also have the option to log in faster by enabling the biometric login setup.

Note: Biometric login setup is required to sign in with fingerprint or face recognition.

1. Click Continue to use your device's fingerprint or facial recognition on subsequent logins.

2. Verify your identity via fingerprint or facial recognition.

3. Name your device (this alias will help you identify this device from any others you may have).

That's it! The device has been added. From now on, you can verify your identity using fingerprint or facial recognition.

Reset 2FA

Important note: If your Atera subscription has only 1 license, and you're not currently logged in to the account, you need to contact support to reset your 2FA.

See a video on how to reset your 2FA

To reset 2FA:

1. Go to Admin > Users and security > Security and authentication.

The Security and Authentication page appears.

2. Select the box next to the desired name.

3. Click Reset. 

When you next log in to Atera, you will be prompted with a new QR code and 24-character recovery code. Copy and save the recovery code. Keep it secret. Keep it safe.