Skip to main content
All CollectionsSecurity
Enabling Two-Factor Authentication (2FA)
Enabling Two-Factor Authentication (2FA)
Desmond Wolkins avatar
Written by Desmond Wolkins
Updated over a week ago

2FA adds extra protection for logins into SalesWings. Users will need to enter a one-time code, which is generated by an app on their phone, in addition to their password. This code will only be valid for a short period of time. This means that logging in will require two factors: the password and the one-time code.

2FA can be enabled and disabled by each user individually and is disabled by default for all users. To enable it, users would need to scan a QR code with a compatible app on their phone, or a password manager.

App requirements

To ensure compatibility, the 2FA application should adhere to the TOTP (time-based one-time password) standard. Examples of commonly used apps include Google Authenticator, Microsoft Authenticator, and Salesforce Authenticator. 1Password, a popular password manager, also supports TOTP. It should be noted that an internet or direct connection between SalesWings and the 2FA app is not necessary. The setup process involves scanning a QR code.

How to Enable 2FA

  1. Log into the SalesWings web Application in your preferred browser.

  2. Go to the settings page and open the section titled Two-Factor Authentication

  3. Back up the secret key securely

    1. The secret key is required to recover access in case the phone is lost

    2. Users are strongly encouraged to store the secret key safely because there is no automated way of recovering 2FA authentication.

  4. Open the 2FA app on the phone

  5. Scan the QR code with the 2FA app

  6. Generate a new one-time code with the 2FA app

  7. Return to your Cockpit and enter the code then click Enable 2FA

Login with 2FA

  1. Open the cockpit login form. (https://helium.saleswings.pro/login)

  2. Enter your e-mail address and password as usual

  3. Generate a new one-time code with the 2FA app

  4. Enter the code to log in

If the code you entered is not accepted, it is possible that it has expired. Keep in mind that the codes are only valid for 30 seconds.

It is also possible that the clock time differs between SalesWings and the phone, and this can lead to invalid codes.

It is advised to try again with a newly generated code and double-check the clock on the phone.

Disable 2FA

  1. Log into the SalesWings web application (in the browser)

  2. Go to the settings page and open section 2FA

  3. Open the 2FA app on the phone

  4. Generate a new one-time code with the 2FA app

  5. Enter the code and click disable 2FA

Further logins will no longer require a one-time code.

The setup for SalesWings in the 2FA app should be removed manually by the user.

Restore access with the secret key

It mainly depends on the app being used. The secret key alone is enough to set up the 2FA app, even without the original QR code. SalesWings employs the TOTP parameters listed below, which should be set as the default:

  • Algorithm: SHA1

  • Digits: 6

  • Interval: 30

Example for Google Authenticator

  1. Tap on Add a code

  2. Tap on Enter a setup key

  3. Enter a descriptive Account name, e.g. “SalesWings”

  4. Enter the secret key

  5. Type of key should be Time based

  6. Tap on Add to complete the setup

Did this answer your question?