How to enforce two factor authentication

Two factor authentication improves the security of accounts, preventing access when a password was leaked. It is advised to use this setting to protect sensitive data in your organisation. Only owners and admins can change this setting.

Enable two factor authentication

1. Go to the Policies page in Settings.
2. Scroll down to the General section in the Policies page.
3. Toggle the Require multi-factor authentication via email button and press Save.

When the setting has been turned on all users will receive a verification code in their email which is required to login to their Pascal account. The verification code to login will be required once a month for each unique IP address.

When using Microsoft Azure, the two-factor authentication will not be required on login.