In this article, you’ll learn about login security, Two-Factor Authentication (2FA/MFA), and Single Sign On.
Password requirements
A secure password is very important to keep your information safe. You should pick a password that is unique and impossible to guess. Don’t use repetitive or sequential characters (e.g., ‘aaaaaa’, ‘1234abcd’) or context-specific words, such as the name of the service or your username.
The password requirements for your Teamtailor login is:
Your password has to have at least 12 characters (these can be numbers, special characters, and lower/upper case letters)
Your password hasn’t been part of any known major security breach
You cannot use your username/email in your password (as a whole or part of it)
Teamtailor recommends using a combination of characters to create a strong password or utilizing a password manager to generate and securely store your passwords.
Verify your device
In our efforts to keep our customers' accounts and data safe, all users need to verify their devices when logging in to Teamtailor. This will only be required once per browser to keep the login experience smooth for future logins. This step verifies that the user logging in owns that email address, which enhances the security of your account.
When logging in to Teamtailo,r you need to verify ownership of your email by entering a verification code sent to your email address:
Please note that email verification will not be required if your company has set up Two-Factor Authentication or Single-Sign On.
Login sessions
To align with standard security practices, Teamtailor uses login sessions. A login session is the period during which you are logged into our system before being required to log in again. During this time, the system recognizes you and grants you access without you having to log in again.
If you don’t manually log out, you will automatically be logged out if:
You haven’t visited Teamtailor in 26 hours, or
You've been continuously logged in for 10 days — in which case, your session will expire 1 hour after your last activity.
This means you can stay logged in for up to 10 days, as long as you access Teamtailor at least once every 26 hours. After 10 days of continuous login, the session becomes more strict, and you'll be logged out after only 1 hour of inactivity.
If you prefer shorter login sessions for added security, we can easily adjust that for you. Just contact our support team via chat or email at support@teamtailor.com.
Two-Factor Authentication
You can enable Two-factor authentication (2FA) from the security tab in your account settings. 2FA increases security on your account by requiring you to input a time-based one-time password generated by an app on your phone when signing in.
Popular authenticator apps:
Set up 2FA on your company
As a Company admin user, you will find the option to enforce Two-factor authentication for all users under Settings→Company→Security.
After you’ve enabled 2FA, your team members will see a banner when logged in, informing them that they need to set up the authentication on their user profile.
Note, once the two-factor authentication is enforced, the authentication has to be set up by the user in order to continue using their account. What this means is that when the user tries logging in without having enabled 2FA on their login, they will immediately end up on their Profile Security page, like so 👇
You can use the Two-factor authentication filter in your Employee list if you need to know which users have enabled 2FA on their accounts.
Adding and managing 2FA to your login
To set up 2FA on your user profile, head over to Your account → Security, and follow the setup flow.
To do this, simply scan the QR code presented on your screen and then add the 6-digit code generated on your authenticator app.
❕ Please note! 2FA is enabled on your login, meaning that if you have multiple users linked to your login, 2FA is enforced on all users.
Set up 2FA on your user profile with Microsoft Authenticator
Open your Microsoft Authenticator app and click on the plus sign.
After that, choose the option Other (Google, Facebook, etc.).
Now you will be able to scan the QR code that is shown on Teamtailor.
If you, for some reason, are unable to scan the QR code, you can manually enter the configuration code.
There, you can enter Teamtailor as the Account Name and the Configuration Code as the Secret Key.
You will find the Configuration Key under the QR code in Teamtailor.
When you have scanned the QR code or manually added the Configuration key, you will be able to add the Authenticator code from the app directly into Teamtailor.
You have now enabled 2FA on your account!
Set up 2FA on your user profile with Google Authenticator
Open your Google Authenticator app and click on the plus sign.
Now you will choose between scanning the QR code shown on Teamtailor or entering a Setup key.
If you choose the second option, you can go ahead and enter Teamtailor in the Account field, and lastly add the Configuration Key.
You will find the key under the QR code in Teamtailor.
When you have scanned the QR code or manually added the Configuration Key you will be able to add the Authenticator code from the app directly into Teamtailor.
You have now enabled 2FA on your account!
Edit the 2FA setup
If you need to edit your 2FA setup, such as changing the authenticator app, you can head over to your user profile in Teamtailor, disable two-factor authentication, and then set it up again.
Locked out of your account?
If you or a team member struggles to log in, your Company admins can manually disable the 2FA for this account. This is easily done by your Company Admins, by following these short instructions:
Head over to the Employee tab and open the team member you wish to manage
Click Edit profile → Security, and disable the two-factor authentication
Single Sign On (SSO)
You also have the option of enabling SSO as a login method on your Teamtailor account to allow your team to log in to Teamtailor using their existing corporate credentials.