Skip to main content

Two-factor authentication (2FA)

Hanna Zinaienkova avatar
Written by Hanna Zinaienkova
Updated over a week ago

In this article, you will discover:
About Two-Factor Authentication (2FA)

Setting Up 2FA

Disabling 2FA

Accessing YouScan with 2FA

Changing Your 2FA Method

Requiring 2FA in Your Organization (Admin Only)

Mandatory 2FA Setup

Recovering Access with Recovery Codes

Resetting 2FA (Admin Only)

About Two-Factor Authentication (2FA)

Two-factor authentication (2FA) adds an extra layer of protection to your YouScan account. In addition to entering your username and password, 2FA requires you to confirm your identity using a second method — usually a temporary code generated by an authentication app on your mobile device or computer.

This means that even if your password is compromised, unauthorized users won't be able to access your account without the second factor — something only you possess.

2FA helps to:

  • Protect your account from unauthorized access.

  • Add a critical layer of security, especially for users with elevated permissions.

  • Comply with organizational or regulatory security standards.

We recommend enabling 2FA to keep your account secure.

Setting Up 2FA

  • Download a TOTP app of your choice to your phone or desktop. We recommend using Google Authenticator for iOS or Android.

  • In the upper-right corner of any page on YouScan, click your profile photo, then click My settings.

  • In the Two-factor authentication (2FA) section, click Set up 2FA.

  • Under Scan this QR code, choose one of the following:

    • Scan the QR code using your TOTP app (e.g. Google Authenticator). The app will generate a 6-digit code.

    • If you're unable to scan the code, use the manual key shown under "Or enter the following code" to set it up manually in the app.

  • Enter the 6-digit code from the app into the "Verify the code from the app" field.

  • Under "Backup Recovery Codes", click Download to save your recovery codes to a secure location. These codes allow you to access your account if you lose access to your TOTP app.

  • Click I have saved my recovery codes to complete the setup.

Disabling 2FA

  • In the upper-right corner of any page on YouScan, click your profile photo, then click My settings.

  • In the Two-factor authentication (2FA) section, click Disable 2FA.

  • Enter the code from your TOTP app (e.g. Google Authenticator) or one of your recovery codes, then click Verify.

Accessing YouScan with 2FA

Once 2FA is enabled, you'll be asked to enter your 2FA authentication code along with your password every time you sign in to YouScan.

  • After entering your username and password, you'll be prompted to enter a 6-digit code.

  • Open your TOTP app (e.g. Google Authenticator) and enter the current 6-digit code shown for your YouScan account, then click Verify.

  • If you’ve lost access to your TOTP app, click Use a recovery code instead.

  • Enter one of your saved recovery codes and click Verify to complete the login.

  • If you've lost access to both your TOTP app and your recovery codes, please refer to the section Resetting 2FA (Admin Only) to regain access to your account.

Changing Your 2FA Method

  • Follow the steps in the Disabling 2FA section.

  • After 2FA is disabled, return to the Two-factor authentication (2FA) section in My settings.

  • Click Set up 2FA.

  • Follow the steps in the Setting Up 2FA section.

Requiring 2FA in Your Organization (Admin Only)

An organization can require all users in the account to enable two-factor authentication. Only administrators can enable or disable this requirement.

  • In the upper-right corner of any page on YouScan, click your profile photo, then click Account settings.

  • In the Security section of the sidebar, toggle the "Require two-factor authentication (2FA)" switch.

⚠️ Important: Once this setting is enabled, any user who has not set up 2FA will be immediately redirected to the 2FA setup page. Any unsaved data will be lost during this redirection.

To avoid losing unsaved data, please set up 2FA before enabling this requirement.

Mandatory 2FA Setup

If you're redirected to a dedicated Mandatory two-factor authentication (2FA) setup page, it means your organization has enforced 2FA for your account.

To continue, you must complete the 2FA setup process. Click the Set up 2FA button and follow all the steps outlined in the Set up 2FA section above. You won’t be able to access your account until 2FA is configured.

Recovering Access with Recovery Codes

If you lose access to your TOTP app (e.g. Google Authenticator), you can use one of your recovery codes to log in.

  • Enter your username and password as usual.

  • On the authentication screen, click "Having problems?", then select Use a recovery code.

  • Enter one of your saved recovery codes and click Verify.

Recovery codes are provided during the initial 2FA setup. You should have downloaded them as a PDF or printed them and stored them in a safe place.

⚠️ Important: You only receive 10 one-time-use recovery codes, so if you lose access to your TOTP app, it's recommended to reset and reconfigure 2FA to avoid being locked out of your account.

Resetting 2FA (Admin Only)

If a user loses access to both their TOTP app and their recovery codes, an administrator can reset 2FA for that user.

  • In the upper-right corner of any page on YouScan, click your profile photo, then click Account settings.

  • Go to the Users section in the sidebar.

  • Find and select the affected user, then click Edit user.

  • In the Two-factor authentication section, click Reset two-factor authentication (2FA).

Related Articles
Social accounts authorization
How to use webhook integration?
Working with YouScan API
Getting your YouScan account invoice
Single Sign-On (SSO)
Did this answer your question?