Two-factor authentication (2FA)

Article author
Kelly Sutter
  • Updated

Our implementation of two-factor authentication provides your account and subscriber data with an extra layer of security.

When you sign in, you will automatically be sent an email at the address you use when signing in. It will contain the 7-digit verification code needed to complete sign in. To receive this code via SMS instead, set up SMS as your preferred channel on the 2FA Settings page. You can also select the “Remember this device for 30 days” option, if the feature is enabled for your account.

 

2FA user settings

Email is the default channel for verification codes. You will need access to the email address you use for signing in. If your email address is incorrect in WordFly, you may not receive the email and you will not be able to sign in.

To select Email or SMS as your preferred channel

  1. Click on your name in the upper-right corner to access your profile

    profile-menu.png
  2. Click 2FA Settings from the left side

    profile-2fa.png

  3. Select Email or SMS as your preferred channel for receiving verification codes when you sign in

    For email, you can send a test code to your inbox to confirm you can receive codes via email. This is helpful if your organization uses an email security tool that quarantines emails.

    For SMS, you can confirm that your mobile number can receive verification codes as part of the setup process.



2FA account settings

 

To review 2FA setup for your account

  1. Click on Account in the top navigation

  2. Click Security Settings from the left side

    account-security-settings.png

  3. From the Security Settings page, you can:
    • Review all users and their preferred channels
    • Enable/Disable 2FA for all users [Account Owners only]
    • Enable/Disable “Remember this device for 30 days” option [Account Owners only]
    • Forget all remembered devices or forget devices for one person

Depending upon your email server security settings, verification emails may be delayed or go to spam folders. This may prevent users from accessing the account. For timely delivery of authentication emails to your inbox, ask your IT team to add these domains to your email security safelist:
em6118.wordfly.com
wordfly.com

 

 

WordFly-Tessitura custom screen

Each time you sign in to the custom screen, we will send a verification code to your preferred channel: Email or SMS. This code can only be used one time.

  1. Sign in to the WordFly custom screen

  2. Find the verification email in your inbox or mobile device to view or copy the verification code
    Emails will come from buzz@wordfly.com with the subject line, Your WordFly verification code. You may need to check your spam folder.

  3. Return to the login screen and re-enter your password

  4. Then enter or paste in the verification code
    If the code is valid, clicking Sign In will redirect you to the custom screen.

 

ww-verify-cs.png

 

 

How does 2FA work?

Each time you sign in to WordFly, we will send a verification code to your preferred channel: Email or SMS. This code can only be used one time.

  1. Sign in to WordFly

  2. Find the verification email in your inbox or mobile device to view or copy the verification code
    Emails will come from buzz@wordfly.com with the subject line, Your WordFly verification code.

  3. Return to the login screen and enter or paste in the code
    If the code is valid, clicking Sign In will redirect you to the WordFly dashboard.
    If it has expired, click Send me a new code.

 

login-remember.png

 

 

Not receiving authentication emails?

  • Double-check your inbox, spam folder, deleted items folder, or any other inbox folder you don’t regularly consider
  • Check with your IT team to make sure that emails from wordfly.com are not being blocked by Mimecast or other services before they reach your inbox. If authentication emails are blocked or delayed, ask them to add these domains to your email security safelist:
    em6118.wordfly.com
    wordfly.com

 

Need to disable 2FA?

Only Account Owners can disable two-factor authentication for the account.

  • You must be an Account Owner. The Account Owner is selected on Account > Organization Info.
  • If you are the Account Owner, go to Account > Security Settings. Click the Disable 2FA button.
  • If you disable 2FA, you disable it for the entire account, all users, and the Tessitura custom screen