We explain below exactly what is two-factor authentication (2FA), why it’s so important for businesses to protect their systems and how to set up 2FA on your Sage account.
What is Two-Factor Authentication?
Think of two-factor authentication as an extra layer of protection used to ensure the security of online accounts, beyond just a username and password.
Two-factor, or multi-factor, authentication provides a much more secure additional level of protection which requires a user to ‘approve’ a login, normally through a notification on their mobile phone.
Why is it so important for businesses to use Two-Factor Authentication?
The government’s Cyber Security Breaches Survey results show that in the last 12 months, 39% of UK businesses identified a cyber attack, remaining consistent with previous years of the survey. What’s more, they’re becoming far more sophisticated, easily bypassing out-of-date defences.
You will have no doubt seen first-hand how cyber criminals can attempt to ‘trick’ users into sharing their password through mediums such as email. It might appear to come from someone in your address book, asking you to access a file they’ve sent you. If you were to click on that email you’d be taken to a login page, normally one that looks like your Microsoft 365 login screen, where you’ll be prompted to enter your username and password.
Once you’ve entered these details, it’s unlikely there’ll be a file waiting. Instead by doing this, you will have unknowingly given away your password, which could in turn be used to send out similar emails to your contacts and open them up to the same fate. It could even be used to access and monitor your inbox and send emails to customers or colleagues requesting money or asking them to download malicious files.
The best way to avoid such risks is implementing two-factor authentication. That way, if a password is leaked then the account cannot be accessed without the additional approval needed.
How to set up Two-Factor Authentication on your Sage system
Note: Once you set up 2-factor authentication, you can have your Sage product remember you the next time you log in. This means you’ll not be prompted again for 30 days.
Tip: The setup will require an Authenticator app to be used such as Google Authenticator. To avoid issues, make sure you have this installed on your mobile device prior to setup.
- Log into your Account Management page using your email address and password.
- Go to the 2-factor authentication section then select Send email. Note: You’ll receive an email to enrol in 2-factor authentication. Use the link in the email to set up 2-factor authentication on your account before continuing through the steps below.
- You’ll need to scan a QR code with an authenticator app (such as Google Authenticator) on your mobile device. This will give you a 6 digit code which can be entered where prompted, click Continue.
- A recovery code is displayed on the next screen, ensure this is taken note of then select the ‘I have safely recorded this code’ box and click Continue. Caution: It is imperative that this code is copied and kept, this allows you to access your account if you don’t have use of the mobile device.
Once you have completed these steps, 2-factor authentication is activated. You then receive codes to your mobile device when you log in to your product or service.