![hdr_logo.png]](https://go.ninesliving.com/hs-fs/hubfs/j1640189779864/hdr_logo.png?height=40&name=hdr_logo.png){kind=logo}
Two-Factor Authentication (2FA) is strongly recommended to enhance the security of your account. It significantly reduces the risk of unauthorized access—if your password is ever compromised through hacking, guessing, or phishing, it won’t be enough on its own. Without access to the second factor, an intruder cannot log in.
Nines leverages TOTP (Time-based One-Time Password) for multi-factor authentication and supports most standard authenticator apps, and uses app-based 2FA (not SMS-based) for a more secure and reliable experience.
To enable 2FA, every individual user can set it up or the Account Owner can enforce it for every user across the account.
Individual Setup:
-
Go to your Profile Settings
-
Navigate to the Security section
-
Follow the instructions to connect an authenticator app (such as Google Authenticator, Microsoft Authenticator, or LastPass)
- Make sure you store your recovery codes in case you ever lose or change your phone.
Once enabled, each time you log out and log back into Nines, you’ll be prompted to enter a verification code from your authenticator app. This extra step ensures only you can access your account.
Account Owner Enforced:
- Go to the Admin Console
- Navigate to the Security tab
- (Make sure you set it up for yourself first)
- If all users have already enabled two-factor authentication (2FA), it will be required immediately. If at least one user has not enabled 2FA, a 7-day grace period will begin and users will receive an email with instructions and a banner in their Nines account with a countdown.
- To disable 2FA enforcement, please contact support.
