Skip to main content
All CollectionsPayhawk for administratorsSecurity
Enabling and managing 2FA security for Payhawk users at your company
Enabling and managing 2FA security for Payhawk users at your company

Add an extra layer of security for the Payhawk employee accounts by enabling two-factor authentication (2FA) for your company.

Updated over 9 months ago

You can enhance the security of the financial operations and business data of your company by enabling two-factor authentication (2FA) for Payhawk users.

In Payhawk, the 2FA configuration takes place as an additional step for existing Payhawk users. For more information on registering Payhawk accounts, see the article about registering with an email invite or over Active Directory.

Benefits

By adding an extra 2FA security layer, you significantly decrease the risk of hacker attacks against account takeover, fraudulent transactions, unauthorized account access, and account hijacking, and also block the bulk of phishing attacks.

Supported 2FA in Payhawk

In Payhawk, the 2FA extra layer provides the following authorization options for employees:

  • Payhawk app - When enabled for the company, employees will need to authorize through a trusted device they’ve previously linked to their personal Payhawk account. Upon logging in to the Payhawk web portal from another device, they’ll receive a Payhawk mobile app push notification on the trusted device and will have to click on it so that the login on the portal can be allowed.

  • Text message (SMS) - When enabled for the company, employees will need to authorize directly on the Payhawk web portal. Upon logging in to the Payhawk web portal from another device, they’ll receive a six-digit code as an SMS to the verified number with which they first registered in Payhawk.

Enabling 2FA for Payhawk user accounts

When you enable the additional security level for Payhawk users, employees will be automatically logged out and required to authenticate on their next login.

To enable 2FA in Payhawk:

  1. Go to the Settings > Security > Two-factor authentication tab.

  2. Click on Enable for your organization.

  3. In the dialog that opens, switch on the toggle button for the desired extra security level - either Payhawk app or Text message (SMS), or both.

  4. Click on Enable. As a result, the required authentication method will appear under the Two-factor authentication tab.

Editing 2FA for Payhawk user accounts

To edit the 2FA security settings:

  1. Go to the Settings > Security > Two-factor authentication tab.

  2. In the Available authentication methods field, click on Edit.

  3. Update the authentication methods and click on Save changes.

Disabling 2FA for Payhawk user accounts

To disable the extra security authentication:

  1. Go to the Settings > Security > Two-factor authentication tab.

  2. In the Do not use extra security field, click on Disable.

Useful resources

Did this answer your question?