We recently added multi-factor authentication (known as MFA or sometimes 2FA) when you log in as an administrator of a website.
This adds an extra layer of security to the admin pages of your website. It means that even if someone finds out or guesses your password they still can't get into your account.
It works like this:
- When you log in as a website administrator (and when you first register for an account) you will be emailed a six digit verification code.
- This is a unique code which is valid for 30 minutes.
- You must find the code in your email and enter it into the website before you can access the service.
- For security, never forward the code or pass it on to anyone else. If you receive a code that you didn't request then someone else may be trying to get access to your account.
Exceptions
- Voice only requires MFA for website administrators, not for normal members.
- If you tick Remember Me on the login page then do the MFA, Voice will not require it again for the same user in the same browser for six months.
We only recommend that you do this from trusted computers.
The Remember Me functionality is implemented by storing a secure cookie in the browser. And so:
- If you log out and log in again without ticking Remember Me then it'll require the MFA next time you log in.
- If you clear cookies (or use a different browser or device) then it'll require MFA.