This article is for:
Two-factor authentication (2FA) / multi-factor authentication (MFA) is an additional layer of security you can add to your Timely account to ensure both business and client information remains secure from compromise. This is an integral part of running a successful business. In this article, you will learn what this feature is and how it works to protect your account. For more information, see our help guides How to enable two-factor authentication (2FA) and How to set up two-factor authentication (2FA) for staff members.
Timely note: for the best experience, please make sure you are using the latest iOS version, and have updated the Timely iOS app. Please note, the 2FA feature is not available in Singapore.
What is two-factor authentication (2FA)?
Two-factor authentication (2FA) / multi-factor authentication (MFA) is a security process requiring users to provide two distinct forms of identification to access an account, typically a password (something you know) and a temporary code or biometric scan (something you have/are). It adds a critical layer of protection against phishing, unauthorised access, and stolen passwords.
How 2FA works to protect your account in Timely
If your business has enabled Two-factor authentication (2FA) / multi-factor authentication (MFA) in Timely, it will become mandatory for all staff members with email access to set up 2FA on their own trusted device within two weeks of logging in. 2FA does not apply to staff with PIN-only access.
What to expect during set up
A 6-digit code will be sent to your nominated mobile number for identity verification.
You will be asked to provide a recovery email, which needs to be unique and cannot be the same one you or your staff members use in Timely. This helps our support team verify your identity and issue a recovery code if you ever get locked out.
Ongoing 2FA Requirements
Staff with email access will be prompted to complete 2FA setup on their next login.
-
After setup, they must verify their identity:
Every 30 days
Any time they log in on a new device
After a password change or 2FA reset
After a full logout
Staff who don’t complete 2FA within the two-week grace period will be required to do so before accessing their Timely account.