The Staff Center, formerly CivicPlus Organizations, supports organization-level two-factor authentication, or 2FA, to improve security for single sign-on. This standard security method requires users to enter a password and a second form of verification, such as an authenticator app, to confirm their identity at sign-on.
Important Notes:
Once enabled, all users in your organization will be prompted with instructions at their next sign-on. This includes users who have 2FA turned off on their individual accounts.
Before enabling, review your list of organization users and add or remove users as needed.
If a user is associated with multiple organizations, such as a city and a county, 2FA will be required if either organization enables it.
This setting applies only to organizations that do not use a custom identity provider.
Who can use this feature?
Organization Owners
Instructions
Sign in to the Staff Center
Navigate to Settings:
Scroll down to the Security section and toggle on Force Two-Factor Authentication:
Click Save:
Once enabled, the next time users log in, they will be prompted to scan a QR code and set up the 2FA app of their choice:
Users will also see a list of Recovery Codes for their account in case they ever lose access to the app. We highly recommend users save these codes:
Signing in will now require a time-based, one-time passcode every time a user logs in