In this article, you’ll learn about login security, Two-Factor Authentication (2FA/MFA), and Single Sign On.
Password requirements
A secure password is very important to keep your information safe. You should pick a password that is unique and impossible to guess. Don’t use repetitive or sequential characters (e.g., ‘aaaaaa’, ‘1234abcd’) or context-specific words, such as the name of the service or your username.
The password requirements for your Teamtailor login is:
Your password has to have at least 12 characters
Your password hasn’t been part of any known major security breach
You cannot use your username/email in your password (as a whole or part of it)
Teamtailor recommends using a password manager to generate and keep track of passwords
Verify your device
In our efforts to keep our customers' accounts and data safe, all users need to verify their device when logging in to Teamtailor. This will only be required once per browser to keep the login experience smooth for future logins. This step verifies that the user logging in owns that email address which enhances the security of your account.
When logging in to Teamtailor you need to verify ownership of your email by entering a verification code sent to your email address:
Please note that email verification will not be required if your company has set up Two-Factor Authentication or Single-Sign On.
Two-Factor Authentication
You can enable Two-factor authentication (2FA) from the security tab in your account settings. 2FA increases security on your account by requiring you to input a time-based one-time password generated by an app on your phone when signing in.
💡 Popular authenticator apps are:
Set up 2FA on your company
As a Company admin user, you will find the option to enforce Two-factor authentication for all users under Settings→Company→Security.
After you’ve enabled 2FA your team members will see a banner when logged in, informing them that they need to set up the authentication on their user profile. Note, once the two-factor authentication is enforced the authentication has to be set up by the user in order to continue using their account. What this means is that when the user tries logging in without having enabled 2FA on their login, they will immediately end up on their Profile Security page, like so 👇
You can use the Two-factor authentication filter in your Employee list if you need to know which users have enabled 2FA on their accounts.
Adding and managing 2FA to your login
To set up 2FA on your user profile, head over to Your account → Security, and follow the setup flow.
To do this, simply scan the QR code presented on your screen and then add the 6-digit code generated on your authenticator app.
❕ Please note! 2FA is enabled on your login, meaning that if you have multiple users linked to your login 2FA is enforced on all users.
Set up 2FA on your user profile with Microsoft Authenticator
Open your Microsoft Authenticator app and click on the plus sign.
After that, choose the option Other (Google, Facebook, etc.).
Now you will be able to scan the QR code that is showing on Teamtailor.
If you for some reason are unable to scan the QR code, you can manually enter the configuration code.
There you can enter Teamtailor as the Account Name and the Configuration Code as the Secret Key.
You will find the Configuration Key under the QR code in Teamtailor.
When you have scanned the QR code or manually added the Configuration Key you will be able to add the Authenticator code from the app directly into Teamtailor.
You have now enabled 2FA on your account!
Set up 2FA on your user profile with Google Authenticator
Open your Microsoft Authenticator authenticator app and click on the plus sign.
Now you will choose between scanning the QR-code showing on Teamtailor or entering a Setup key.
If you choose the second option, you can go ahead and enter Teamtailor in the Account field and lastly add the Configuration Key.
You will find the key under the QR-code in Teamtailor.
When you have scanned the QR code or manually added the Configuration Key you will be able to add the Authenticator code from the app directly into Teamtailor.
You have now enabled 2FA on your account!
Edit the 2FA setup
If you need to edit your setup, such as changing the authenticator app, you can head over to your user profile, disable set-up, and then add it again.
Locked out of your account?
If you or a team member struggles to log in, your Company admins can manually disable the 2FA for this account. This is easily done by your Company admins, by following this short instruction:
Head over to the Employee tab and open the team member you wish to manage
Click Edit profile→Security and disable the two-factor authentication
Single Sign On (SSO)
You also have the option of enabling SSO as a login method on your Teamtailor account to allow your team to log in to Teamtailor using their existing corporate credential. You can use Single Sign-On through SAML 2.0, which is an open standard data format for exchanging authentication and authorization information. Learn more about how to set up SSO here!