Megaphone now offers two-factor authentication for all users to help keep every account, podcast, campaign safe. Your account security is of utmost importance to us so we’re spent the last few months giving you an extra layer of security in case your password is ever compromised.
This feature is available for all orgs who choose to turn on two factor verification. Our two-factor verification works with all verification apps but we recommend Google Authenticator or Duo for simpler user flow.
Here’s how it works:
Step #1: Turn on Two-Factor
Org Admins can turn on two-factor verification by going to "Org Settings" and enabling 2FA. Upon enabling, your users will get an email notifying them next time they log in to Megaphone, they will be asked to setup two-factor verification.
Step #2: Setup 2FA
Upon successful entering your username and password, you will be asked to setup an verification app on your phone. While we support all verification apps, we recommend users use Google Authenticator or Duo for best experience.
You can either scan the QR code on the screen with your verification app or manually enter the key below the QR code on the verification app to pair.
Once you receive the rotating six digit code, click "Continue" to insert that code on the next screen for verification.
Step #3: Save Backup Codes
Upon successful code verification, you will be presented with five backup codes where if you can not locate your phone at the time of login, you can fill in the backup codes where the six digit code field would be. Once you have printed and saved these backup codes in a safe place, you can check the box below and continue to Megaphone.
Step #4: Login
Upon your next login, you will be asked to enter your password as well as the rotating two factor verification code from your chosen app. If both of these are correct, you will be logged in to your Megaphone account. You have three incorrect tries until your account is locked.
As always, if you need any assistance, please contact Support via Live Chat or at firstname.lastname@example.org.
Ability to Check and Sort by Two Step Verification Status
You are able to see if your users have registered or set up their two step verification as well the last time they used two factor verification to login.
Ability to Revoke User’s Two Step Verification
If the user has lost their phone or needs to re-setup their two step verification, Org Admins can revoke the user’s two step verification status, requiring user to setup upon next login.
Step #1: Click on the user whose two step verification you would like to revoke.
Step #2: Select “Reset Two-Step Verification”
Step #3: Confirm to revoke this user’s two step verification
As always, if you run into any issues or have further questions, please reach out to Support via the LiveChat or email email@example.com.