Documentation Index

Fetch the complete documentation index at: https://www.civicplus.help/llms.txt

Use this file to discover all available pages before exploring further.

Force Two-Factor Authentication for an Organization

Prev Next

The Staff Center, formerly CivicPlus Organizations, supports organization-level two-factor authentication, or 2FA, to improve security for single sign-on. This standard security method requires users to enter a password and a second form of verification, such as an authenticator app, to confirm their identity at sign-on.

Important Notes:

Who can use this feature?

Organization Owners

Instructions

  1. Sign in to the Staff Center

  2. Navigate to SettingsThe Settings option in the lefft-hand navigation menu.

  3. Scroll down to the Security section and toggle on Force Two-Factor AuthenticationSettings for enforcing Two-Factor Authentication for CivicPlus users in an organization.

  4. If needed, add a domain to automatically add users with email addresses matching the associated domain(s) to your organization
    Toggle for automatically adding users to an organization by their email domain.

  5. Click Save

  6. Once enabled, the next time users log in, they will be prompted to Enable an Authenticator App (recommended) or Enable Email Authentication
    Select your Multi-Factor Authentication method, either authenticator app or email authentication.

  7. The user will then follow the setup instructions for the method they selected

    • Authenticator App:

      1. Scan a QR code and set up the 2FA app of their choiceInstructions for configuring a two-factor authenticator app with QR code and key.

      2. Users will also see a list of Recovery Codes for their account in case they ever lose access to the app. We highly recommend users save these codes:Recovery codes for account access after verifying the authenticator app.

    • Email:

      1. An email will be sent to their account’s email address. They will copy the code from the email.
        CivicPlus email showing a sign-in request with a highlighted authentication code.

      2. The user will paste the Authentication Code from their email and click Verify.
        Email authentication setup with a prompt for entering a verification code.

      3. The user will then receive a new email verification code, which they must enter to confirm their login.
        Email authentication verified, enter the six-digit code to sign in.

  8. Signing in will now require two-factor authentication every time the user logs in

    Note:

    A note will display on the user’s account that two-factor authentication is required for their organization. If they try to disable or reset their 2FA settings, they will be prompted to re-enable 2FA the next time they sign in.
    Two-factor authentication is required for secure login by your organization.