Two Factor Authentication
You can opt to add two-factor authentication as part of your login process at Open Collective, adding an extra layer of security to your account.
Last updated
Was this helpful?
You can opt to add two-factor authentication as part of your login process at Open Collective, adding an extra layer of security to your account.
Last updated
Was this helpful?
Users can choose to add two-factor authentication to their Open Collective accounts. This helps to keep your account safe.
Two-factor authentication provides an additional level of security for your account. If your password or email address is compromised, your account will still be protected so long as your two-factor authentication is secure.
Navigate to your Personal Dashboard > Settings > Security.
To enable 2FA, you will require a secondary authenticator service or product, such as an authenticator app, a YubiKey or a fingerprint sensor.
How to use an Authenticator App
We recommend using Google Authenticator or 1password.
Scan the QR code displayed on the screen with your authenticator app, and your app should offer you a time-limited six-digit code.
Type this code into the box provided to complete the process. You will now be asked for a six-figure code from the app each time you log in to your Open Collective account.
Once you’re set up, do not delete the entry for Open Collective from your authenticator app.
When you set up the 2FA process on Open Collective, you will be given some recovery codes. These codes are an emergency option to help you access your account if you are unable to use your authenticator app.
Store these codes somewhere safe, like a password manager app.
If you get locked out of your account due to 2FA . In some cases, we may need to ask you for substantial proof that the account is indeed yours.
You can require all of your admins to enable 2FA on their profiles to carry out tasks.
Opt-in to enforce 2FA for all of your admins. Any attempt at triggering admin operations or visiting the admin pages will be blocked until the admins enable 2FA on their profiles. Projects and events inherit the 2FA settings.
To enforce 2FA for all admins, navigate to your Collective, Organization, or Fiscal Host Dashboard > Settings > Security and turn on the two-factor authentication security. Make sure to press save.
When visiting admin pages, your admins will be prompted to activate their 2FA.