In this article, you will learn about multi-factor authentication within Actionstep, how to enable it, and how to de-activate it. Multi-step authentication adds an extra level of authentication to the login process, making your access to Actionstep even more secure.
NOTE Currently, tax authorities in certain countries are strongly advising any user with access to Accounting (and billing) data to have MFA enabled. We recommend you check to see if such regulations apply to you. In general, having MFA in place is the best step you can take to protect your data and Actionstep recommends it for all its users. ![]() |
Actionstep's multi-factor authentication will require the use of an authentication App on your phone or computer such as Google Authenticator. When you log in you will be prompted to enter the code that this App will display.
Each user must set this up for themselves. 2-factor authentication cannot be made mandatory for your users.
NOTE An administrator can also set another level of security by restricting access to Actionstep to a list of IP addresses. See Password Policies. |
Activating Multi-factor Authentication
Activating multi-factor authentication is done on the user's My Profile page.
- To access the My Profile page, click on your name at the top of the screen above the search box.
- Under the 'Password' section, you will see a field showing if a multi-factor configuration is set up on your login. Click the 'Active' button to activate it.
- On your mobile phone or computer, you then have to open your Authentication App. On that App, either scan the QR code that appears on the screen, or you can click the link below it to show the secret key. The secret key can be manually typed into your App.
-
Your Authentication App will provide you with two codes which you should type into fields on the screen. The App may show one code at a time. Click 'Save' to continue.
-
Your login is now set to use Multi-factor authentication.
Recommended Apps
Using Multi-factor Authentication
- When you log in to Actionstep, you will enter your email address and password as normal.
- Once you have entered that accurately, you will see the screen below where you are prompted to enter the MFA code.
- You will then be able to open the Authentication App on your mobile phone or computer to see the code to enter.
- Enter the code and click 'Confirm'.
Deactivating Multi-factor Authentication
Note: MFA can be deactivated in Australia and New Zealand (See Resetting Multi-Factor Authentication (MFA) but the user may be prompted to set it up again immediately.
You can deactivate multi-factor authentication once you have logged back into your system.
- Return to the My Profile screen and click the 'Deactivate' button.
- You will have to enter a code from your Authentication App
- Then tick the box confirming the removal of the multi-factor authentication
- Click the 'Save' button.