Two-Factor Management

Pricefx supports two-factor authentication that adds an extra layer of security to the process of logging in to the application or Excel Client. This authentication based on the so called TOTP algorithm.

You can specify users for whom two-factor authentication will be required. When these users attempt to log in, they will have to enter besides their user password also a one-time password.

This password is provided by a client device that implements the TOTP algorithm with the provided seed. Google Authenticator is one of the most known and widespread client apps that does this, but there are many others (Authy, Microsoft Authenticator, FreeOTP, etc.). Also hardware based devices like UbiKey can handle it.

To implement two-factor authentication:

Go to Administration > Access Admin > User Admin and select True in the Require TFA? column for the desired users.
Go to Administration > Access Admin > Two-Factor Management and for each user define the email address to which all the necessary information about the setup will be sent.
The user receives an email with a QR code which contains a shared secret key that will be stored in the authentication application.
The user creates a Pricefx account in the application and scans the QR code.
Once the account is set up, the user can start generating one-time passwords for logging in to Pricefx.

Currently, for authentication applications installed on Android, you can both scan the QR code or enter the key manually. For apps installed on iOS, you can only use the manual input.

If you are using Pricefx Studio and choose to implement two-factor authentication, enter the token code from the email in the TFA Token field when creating the config.json file for your partition.