2-Factor authentication for increased security

Blog / 2-Factor authentication for increased security

By implementing two-factor authentication (2FA), you can greatly enhance the security of your membership area against unauthorized access. This article will guide you on how to effectively use 2FA and explore its benefits and drawbacks.

What is two-factor authentication?

To access your membership area and content, users need their login credentials, which include an email address and a password. This ensures that only those with the correct credentials can log in.

However, if these credentials are shared, unauthorized access can occur.

To prevent this, two-factor authentication (2FA) is used.

With 2FA enabled, users must enter a six-digit PIN, generated via email or an authenticator app, in addition to their password. This PIN is valid for a short period, preventing unauthorized use. Simply sharing the password is no longer sufficient for access.

Note: If 2FA is not activated, a maximum of three devices can be logged into an account simultaneously. This ensures a level of protection for your member area even without 2FA.

How to activate and set up 2FA

In the settings of your membership area under the “General” tab, you can enable 2-factor authentication.

Two methods are available for using 2FA:

2-Factor authentication via email code

All members must enter a 6-digit PIN after entering their password, which they will receive by email immediately after entering their password. The PIN is valid for five minutes and can only be used immediately after login.

2-Factor authentication through authenticator app

All members must log in using an authenticator app on their smartphone after entering their password.

Once you use the feature, members will be prompted to set up authentication the next time they log in. A step-by-step guide will be displayed (see screenshot).

For subsequent logins, simply open the authenticator app and enter the displayed code in COACHY.

If a member has a problem (stolen smartphone, etc.), 2FA can be individually reset and restarted. Simply click the corresponding button in the edit mode of the respective member.

Advantages and disadvantages of 2FA

The major advantage of 2FA is that it significantly increases the security of your membership area against unauthorized access. Sharing the password is no longer sufficient for login. An additional authentication code is required, which is constantly renewed. This ensures that only authenticated users who have access to the linked smartphone or the member's email address can log in to your membership area.

However, 2FA has some drawbacks. Access to your email inbox or smartphone is essential for login, and 2FA cannot be disabled for individual members. If a member does not have a smartphone, they will be unable to log in to your membership area if authentication via an authenticator app is required.

Additionally, 2FA may require slightly more administrative effort for you and your members, especially when using an authenticator app. Users must always have the app for login. If a member's smartphone is lost or broken, their 2FA needs to be reset, increasing your workload as a coach.

Conclusion

Ultimately, you need to weigh the pros and cons of 2FA. This feature greatly enhances the security of your membership area and protects your content from unauthorized access. However, it also increases the administrative burden for you and your members. Consider your target audience: Do they have smartphones? Will they accept the extra steps required for 2FA? How likely is it that someone will share their login credentials, and what financial impact might that have? You can activate or deactivate 2FA as needed.

If you have any more questions, feel free to reach out to our support team.