Two-factor authentication

You can now enable two-factor authentication (2FA) for your ThingLink account to add an extra layer of security. With 2FA enabled, you will need to provide a one-time verification code along with your account password each time you sign in. This verification code can be sent to your email or accessed through an authenticator app.

• How to enable 2FA
  • Email authentication
  • App authentication
• Disabling and configuring 2FA
• Enabling 2FA for your organization
• Limitations
• Troubleshooting

How to enable 2FA

You can enable two-factor authentication in your Profile Settings:

1. Click the cog icon 'Profile Settings' in the top right corner → 'Login & Security' tab.
2. Select 'Enable' next to 'Two-factor authentication'.
3. In the new popup window, choose the authentication method (see below) and click 'Enable'.
4. Enter the verification code to confirm the setup. If you do not enter a code, 2FA will not be enabled. To cancel, click outside the popup window.

Email authentication

If you select Email, you will receive a verification code to your email address each time you try to sign in to your ThingLink account. 

App authentication

If you select App authentication, you will need to enter a code from your preferred authenticator app each time you try to sign in. 

When you enable app authentication, you will see instructions for linking your ThingLink account to your authenticator app. The following authenticator apps have been confirmed to work with ThingLink: 

• Google Authenticator 
• Microsoft Authenticator
• Twilio Authy
• 1password

Click the links above for detailed instructions on how to add your ThingLink account to the app. Be sure to save the recovery codes displayed on the configuration screen. These codes will enable you to access your ThingLink account if you ever lose access to your authenticator app.

Disabling and configuring 2FA

You can disable 2FA or change your verification method at any time.

To disable 2FA:

1. Sign in to your account.
2. Go to 'Profile Settings' → 'Login & Security' tab.
3. Select 'Disable' next to Two-factor authentication.

To change your verification method:

1. Go to 'Profile settings' → 'Login & Security' tab.
2. Select 'Configure' next to 'Two-Factor authentication'.
3. A new popup window will appear, allowing you to switch between available methods and access the information needed to add your account to an authenticator app.

Enabling 2FA for your organization

If you are an admin of an organizational account, such as a school or an eLearning team, you can prompt all users to enable two-factor authentication (2FA).

To Enable This Setting:

1. Navigate to 'Organization' → 'Settings' → 'Miscellaneous'.
2. Toggle the option 'Ask users to enable 2FA'.

Once enabled, all users in your organization will see a persistent banner at the top of their screen, prompting them to set up 2FA via their Profile Settings. This ensures enhanced security across the entire organization.

Limitations

• 2FA is not enforced if you access your ThingLink account using Microsoft or Google single sign-on 
• 2FA is not enforced if you access your ThingLink account via an LTI integration.
• 2FA is currently not enforced in the ThingLink mobile apps for iOS and Android. We are working on an update that will add support for 2FA to both iOS and Android apps.

Troubleshooting

I did not receive an email with the verification code

Please check your spam folder and search for emails from friendly-gnome(at)thinglink.com. Check if you can receive emails from external senders.

If the issue persists, contact our team here. 

Google Authenticator code does not work (Android)

You might need to synchronize your app. Follow the instructions in the 'My Google Authenticator codes don’t work' section here: https://support.google.com/accounts/answer/185834?hl=en, then try to sign in again.

I no longer have access to my email address and cannot get a verification code

Please contact our team here.