Payhawk

You can enhance the security of the financial operations and business data of your company by enabling two-factor authentication (2FA) for Payhawk users.

In Payhawk, the 2FA configuration takes place as an additional step for existing Payhawk users. For more information on registering Payhawk accounts, see the article about <a href="https://help.payhawk.com/en/articles/3376494-registering-to-payhawk-with-an-email-invite">registering with an email invite</a> or <a href="https://help.payhawk.com/en/articles/5779360-registering-to-payhawk-over-active-directory">over Active Directory</a>.

By adding an extra 2FA security layer, you significantly decrease the risk of hacker attacks against account takeover, fraudulent transactions, unauthorized account access, and account hijacking, and also block the bulk of phishing attacks.

In Payhawk, the 2FA extra layer provides the following authorization options for employees: 

Payhawk app - When enabled for the company, employees will need to authorize through a trusted device they’ve previously linked to their personal Payhawk account. Upon logging in to the Payhawk web portal from another device, they’ll receive a Payhawk mobile app push notification on the trusted device and will have to click on it so that the login on the portal can be allowed.

Text message (SMS) - When enabled for the company, employees will need to authorize directly on the Payhawk web portal. Upon logging in to the Payhawk web portal from another device, they’ll receive a six-digit code as an SMS to the verified number with which they first registered in Payhawk.

- Payhawk app - When enabled for the company, employees will need to authorize through a trusted device they’ve previously linked to their personal Payhawk account. Upon logging in to the Payhawk web portal from another device, they’ll receive a Payhawk mobile app push notification on the trusted device and will have to click on it so that the login on the portal can be allowed. 
- Text message (SMS) - When enabled for the company, employees will need to authorize directly on the Payhawk web portal. Upon logging in to the Payhawk web portal from another device, they’ll receive a six-digit code as an SMS to the verified number with which they first registered in Payhawk.

When you enable the additional security level for Payhawk users, employees will be automatically logged out and required to authenticate on their next login.

Go to the Settings &gt; Security &gt; Two-factor authentication tab.

Click on Enable for your organization.

In the dialog that opens, switch on the toggle button for the desired extra security level - either Payhawk app or Text message (SMS), or both.

Click on Enable. As a result, the required authentication method will appear under the Two-factor authentication tab.

1. Go to the Settings &gt; Security &gt; Two-factor authentication tab.
2. Click on Enable for your organization.
3. In the dialog that opens, switch on the toggle button for the desired extra security level - either Payhawk app or Text message (SMS), or both. 
4. Click on Enable. As a result, the required authentication method will appear under the Two-factor authentication tab.

In the Available authentication methods field, click on Edit.

Update the authentication methods and click on Save changes.

1. Go to the Settings &gt; Security &gt; Two-factor authentication tab.
2. In the Available authentication methods field, click on Edit. 
3. Update the authentication methods and click on Save changes.

To disable the extra security authentication: 

In the Do not use extra security field, click on Disable.

1. Go to the Settings &gt; Security &gt; Two-factor authentication tab.
2. In the Do not use extra security field, click on Disable.

<a href="https://help.payhawk.com/en/articles/6970682-using-sso-and-setting-up-saml-with-payhawk">Using SSO and setting up SAML with Payhawk</a>

<a href="https://help.payhawk.com/en/articles/8773730-adding-and-managing-trusted-devices-for-your-personal-payhawk-account">Adding a trusted device to your personal Payhawk account</a>

- <a href="https://help.payhawk.com/en/articles/6970682-using-sso-and-setting-up-saml-with-payhawk">Using SSO and setting up SAML with Payhawk</a>
- <a href="https://help.payhawk.com/en/articles/8773730-adding-and-managing-trusted-devices-for-your-personal-payhawk-account">Adding a trusted device to your personal Payhawk account</a>

Add an extra layer of security for the Payhawk employee accounts by enabling two-factor authentication (2FA) for your company.

Benefits

Supported 2FA in Payhawk

Enabling 2FA for Payhawk user accounts

Editing 2FA for Payhawk user accounts

Disabling 2FA for Payhawk user accounts

Useful resources