This article explains how you can set up two-factor authentication to increase account security.
Adding Two-Factor Authentication to a User Profile
Account Admins: Adding Two-Factor Authentication to a User Profile
This section is for Double the Donation administrators wanting to set up two-factor authentication for a user.
- Log in to your account and navigate to the "User Management" tab.
- Navigate to the "Add New User" section at the bottom of the page.
- Check "Require Authenticator? (2 Factor)" while filling out the form:
- Read the popup message that appears to ensure you understand the requirements for using 2FA. Once you are confident in your decision, select "Confirm." If you do not believe your users will be able to satisfy the 2FA requirements for setup and ongoing access, select "Cancel" to create the user without requiring 2FA. You can elect to create the new user without 2FA for now and add it to the user profile later.
- Complete the "Add New User" form and select "Add New User":
- The new user will receive an email with instructions for setting up account access using a username and password as well as 2FA.*
- Log in to your account and navigate to the "User Management" tab.
- Navigate to the "Current Users" section at the top of the page and identify the row containing the user profile you wish to add 2FA to.
- Select "Add Authenticator" in the "Actions" column:
- Read the popup message that appears to ensure you understand the requirements for using 2FA. Once you are confident in your decision, select "Confirm." If you do not believe your users will be able to satisfy the 2FA requirements for setup and ongoing access, select "Cancel." You can elect to add 2FA to the user profile later.
- The user will receive an email with instructions for setting up 2FA.*
Account Users: Setting Up 2FA for Your User Profile
This section is for users whose Double the Donation administrator has enabled two-factor authentication for their user profile.
Once your administrator has enabled two-factor authentication for your user profile, you will receive an email with the subject line "Instructions: 2FA setup for your Double the Donation account" with setup instructions and a link. Click the unique link in your setup email:
Follow the prompts to either set your username and password (new user) or confirm your existing username and password (current user):
Then, follow the prompts on the login screen or the process below to complete the 2FA setup:
-
Download the app called "Google Authenticator" on your smartphone.
-
Scan the QR code on your screen into that app.
-
A 6-digit code will appear within your Google Authenticator app after you've scanned the code. Enter this code onto the screen to complete setup.
-
You will receive a confirmation message in your email indicating that 2FA setup is complete. This email has the subject line "Confirmation: 2FA now required for your Double the Donation Matching". If you do not receive this confirmation email, your 2FA setup is incomplete. Click the link in the original setup email to try again.
Notes about 2FA setup security measures:
- You can click the link in your 2FA setup email any time to begin setup, but the QR code presented to you during the setup process will change periodically for security. Please complete 2FA setup in one session to avoid QR code timeout.
- You can only begin the 2FA setup process if you select the link in your 2FA setup email, not if you simply navigate to https://doublethedonation.com/members/login/ and log in with your username and password. 2FA setup can only be initiated from the link in your email. If you have not completed 2FA setup and you attempt to log in to Double the Donation, you will receive the "Invalid Two-Factor Auth Code" error message. Return to your email to begin setup instead.
Once 2FA setup is complete, when you log in to Double the Donation, you'll use the following:
-
- Username
- Password
- Two-Factor Authenticator Code (generated from your "Google Authenticator" application on your phone). This code is time-sensitive, so ensure that you are using the code that appears in your app at the moment you're trying to sign in, not an old code.
*Only users with 2FA added after March 31, 2024 will have received setup instructions over email. If 2FA was enabled for your user profile after that date and you did not complete setup, you will not have an email in your inbox to begin 2FA setup at a later date. Instead, contact your account administrator and ask them to remove the authenticator from your user profile in the "Actions" column of the Current Users table, then add it again. This will initialize the setup email being sent to your email inbox.