Safety & Security·4 min read·Updated 1 April 2026

Two-Factor Authentication (2FA) Setup and Management

Q: Is 2FA required on all plans?

2FA is optional on all plans but strongly recommended. On the Business plan, admins can make 2FA mandatory for all team members.

Q: I get logged out frequently and have to enter my 2FA code every time. Can I change this?

Yes. Go to Account Settings → Security and set your trusted device duration — you can choose to trust a device for 7, 14, or 30 days, meaning you only need to enter your 2FA code on that device once during that period.

Enable two-factor authentication on your AskBiz account to add a critical second layer of security against unauthorised access.

Why 2FA Matters

Two-factor authentication (2FA) means that even if someone steals your password, they still cannot access your account — because they also need your phone or authenticator app to complete the login. For a business intelligence platform containing your revenue, customer, and financial data, 2FA is one of the single most important security measures you can take. We strongly recommend enabling it.

Enabling 2FA

1. Go to Account Settings → Security → Two-Factor Authentication

2. Click Enable 2FA

3. Choose your method:

Authenticator App (recommended) — works with Google Authenticator, Authy, 1Password, and any TOTP app
SMS — a code is texted to your mobile number (less secure than an app, but better than nothing)

4. Follow the on-screen setup steps

5. Save your backup codes — you'll need them if you lose access to your authenticator

Once enabled, you'll be prompted for your 2FA code each time you log in from a new device.

Authenticator App vs. SMS

We recommend an authenticator app over SMS for two reasons:

SMS can be intercepted via SIM-swapping attacks — a known vector for account takeovers
Authenticator apps work offline and are not dependent on your mobile network

If you use an authenticator app, also back it up — most apps (Authy, 1Password) offer cloud backup so you don't lose access if you change phones.

Managing 2FA for Team Members

On the Business plan, admins can require all team members to have 2FA enabled before they can access the account. To enforce this:

1. Go to Settings → Team → Security Policy

2. Toggle Require 2FA for all members

3. Team members who do not yet have 2FA will be prompted to set it up at their next login and blocked until they do

This is especially important for team members with Admin or Analyst roles who have access to sensitive financial data.

Recovering Access if You Lose Your 2FA Device

If you lose access to your authenticator (new phone, lost device, deleted app):

1. Use one of your backup codes — you were shown these when you set up 2FA. Each code works once.

2. If you've also lost your backup codes, contact support@askbiz.co from your registered email address. We will verify your identity via an alternative method before resetting 2FA access.

Never share your backup codes. Store them in a password manager or secure document, not in your email inbox.

Frequently Asked Questions

Is 2FA required on all plans?

I get logged out frequently and have to enter my 2FA code every time. Can I change this?

Was this article helpful?

👍 Yes 👎 No

Still stuck? Email our support team.