Appearance

Two-factor authentication

What is two-factor authentication?

Two-factor authentication gives your Billingbooth One account an additional level of security by requiring you to verify your identity via SMS or email.

When set up, after you enter your usual login details, you will then be sent a code via your preferred method that you use to authenticate yourself with Billingbooth One. This can be set to remember you on a specific device for up to 14 days.

Doing this means that someone gaining access to your account credentials wouldn't be enough to compromise your account itself, keeping it and your data safe.

Setting up your own two-factor authentication

At the top-right of the screen, click on your profile icon and then click on My Profile in the drop-down that appears.

From this screen, click the Enable 2FA sub-menu item on the left-hand side.

This will take you to the Enable two-factor authentication wizard.

Step 1) Choose 2FA method

Pick the Method you wish to be sent authentication. This can either be Email, where you will be sent a 2FA code to the email address you use to login to Billingbooth One. Alternatively, it can be SMS, where the 2FA code will be sent via SMS to a mobile number you provide.

If you select SMS, the Mobile number field will appear where you can enter your preferred mobile number to receive two-factor authentication codes.

!> The mobile number should either be in the national format for the UK (07xxxxxxxxx) or in full international format (+614xxxxxxxx).

Step 2) Confirm 2FA code

If you selected Email as your method, you'll be emailed your Billingbooth One 2FA Code via the email address you use to sign into Billingbooth One.

If you selected SMS as your method, you'll be sent a text containing your Billingbooth One 2FA Code via the mobile number you provided in the previous step.

Should you not receive a code via your preferred method (please allow five minutes for good measure), simply click the I haven't received an authentication code yet, re-send link to have a new one be sent out.

The Authentication Code itself is a six-digit number.

You can copy and paste it into the Authentication Code field in the 2FA wizard, alternatively you can just type the code in.

Once complete it will automatically check if the code is valid and if so, it will take you to the Complete step (see below).

Step 3) Complete

Upon reaching this step, two-factor authentication is successfully activated on your account.

The next time you sign into Billingbooth One, you'll be asked to enter a new 2FA authentication code sent via your designated method.

This screen also provides you with a single-use Recovery Code. You should store this Recovery Code somewhere safe so that, in the event you cannot access your two-factor authentication method, you can use the Recovery Code to get into your Billingbooth One account.

Disabling your own two-factor authentication

At the top-right of the screen, click on your profile icon and then click on My Profile in the drop-down that appears.

From this screen, click the Disable 2FA sub-menu item on the left-hand side.

This will take you to a screen confirming that you have disabled two-factor authentication. It will also send confirmation to your two-factor authentication method.

Log in using two-factor authentication

Once two-factor authentication is enabled on your account, you will go through a secondary authentication step each time you login to Billingbooth One.

The Trust this device for 14 days field allows you to trust the device you're logging in from for two weeks, which means if you're logging into Billingbooth One from this device again in the next two weeks, you won't be required to enter a two-factor authentication code.

You will be prompted to enter a six-digit authentication code that's sent to your preffered two-factor authentication method.

Please allow the authentication code five minutes to arrive, if it doesn't, feel free to click the Re-send it link just above where you enter the code to be sent a new authentication code.

If you don't have access to your preferred two-factor authentication method, you can Login using a recovery code (see below).

Otherwise, if you neither have access to your preferred two-factor authentication method nor do you have your recovery code, see the I'm locked out of my account section below.

Log in using a recovery code

If you are unable to access the method where you have two-factor authentication codes sent to, you can get back into your account using the single-use recovery code from when you set up two-factor authentication.

When prompted to enter an authentication code, you will see a Having problems? section underneath it, click the Enter a two-factor recovery code link.

A new modal window will pop up, enter your recovery code into the Recovery code field.

If the code is valid, it will generate a new single-use recovery code for you. As before, make sure to store this recovery code somewhere safe.

Once you've done so, you're free to continue into your account.

I'm locked out of my account

If you have neither the means of accessing your preferred two-factor authentication method or accessing your recovery code, you will need to get in touch with us by emailing support@billingbooth.com so we can verify your identity and help you log back in.

Enabling another user's two-factor authentication

To delete a user account, click the Settings icon in the left-hand main navigation and then click Users under the Security heading in the sub-menu that appears. This will take you to the Users screen.

Find the user who needs their account deleting in the user listings and click the Click to enable button in their respective Two-Factor Authentication column.

This will then take you through the two-factor authentication setup wizard, for more info see Step 1) Choose 2FA method above.

Disabling another user's two-factor authentication

To delete a user account, click the Settings icon in the left-hand main navigation and then click Users under the Security heading in the sub-menu that appears. This will take you to the Users screen.

Find the user who needs their account deleting in the user listings and click the Disable 2FA button in their respective Two-Factor Authentication column.

A modal window will appear, asking if you're sure you wish to disable the two-factor authentication for the selected user account, clicking the Yes, disable button will delete the account.

A modal will appear to indicate the account has been deleted and a message will be sent to the user's preferred two-factor authentication method to let them know that it has been disabled.