Two-factor authentication (2FA) adds an extra layer of security when accessing TaxDome. The additional step of authenticating your identity makes it much harder for an attacker to access your data, even if your credentials have become compromised. All TaxDome users can turn on 2FA, whether you’re a firm owner, team member, or client. We recommend that you do—we want everyone to be safe!
- Enabling Two-Factor Authentication
- Signing in With Two-Factor Authentication Enabled
- What Happens if I Lose My Cell Phone?
- Disabling Two-Factor Authentication for Your Account
- Disabling Two-Factor Authentication for Clients and Team Members
Enabling Two-Factor Authentication
Once you enable two-factor authentication, you’ll need to have your smartphone handy whenever you log on to your TaxDome account. When you do, you’ll be confirming your identity by typing in the code provided on your mobile device.
To turn on two-factor authentication to add an extra level of security, follow these steps:
1. Go to Settings, turn on the Two-factor authentication toggle, enter your TaxDome account password, then click SUBMIT.
2. You’ll be presented with a list of applications that can be used for two-factor authentication. Install the Authy application (or Google Authenticator, Microsoft Authenticator, etc.) on your phone, then tap Scan a QR code.
3. Click the NEXT STEP button on your computer screen, then scan the barcode with your phone.
4. Click the NEXT STEP button on your computer screen, enter the six-digit code that the authenticator app provides, then click the VERIFY button. Two-factor authentication is then enabled. Note: The code in Google Authenticator changes every 30 seconds, so if it is not accepted by TaxDome, enter the new one you see in the app.
Note - if you enable 2FA, this means you will have to generate a code from your phone whenever you log in. If you lose access to your smartphone, it will take some time to be able to access your account without it, so having a secondary device for 2FA is the best backup plan. We recommend the Authy application because it allows you to include a backup secondary phone number. When you install Authy on your primary mobile device, you can add the number of the additional trusted device. Read the detailed instructions here.
Signing in With Two-Factor Authentication Enabled
Once two-factor authentication is enabled, you’ll be prompted to enter a temporary authentication code whenever you sign in.
When prompted, open Google Authenticator (or other authenticator app that you chose for this purpose) on your smartphone, then enter the provided code.
Note: The code in Google Authenticator changes every 30 seconds, so if it is not accepted by TaxDome, enter the new one you see in the app.
What Happens If I Lose My Cell Phone?
If you can’t use your authenticator app because you no longer have your phone and you don’t have a backup code, click the No access to application? link (see screenshot below), and then send an email to the address provided.
- If you’re an employee of a firm, the firm owner will be notified, and they’ll be able to disable 2FA for your account.
- If you’re the firm owner, our tech support will be notified. You’ll need to prove your identity by sending us a photo of your driver license along with a selfie of you holding it, so we can be sure it’s you. Note that the verification process usually takes 1 business day.
Disabling Two-Factor Authentication for Your Account
If you decide you no longer want to use two-factor authentication to log on, you can disable it. To do so, follow these steps:
1. Go to Settings, turn off the Two-factor authentication toggle, enter your TaxDome account password, then click SUBMIT.
Disabling Two-Factor Authentication for Clients and Team Members
As a firm owner, you can disable two-factor authentication for your clients and team members if they have lost access to their authenticator app. If they clicked the No access to application? link, you’ll receive a notice at the same email you use for all your notification alerts. Or you can set up a separate email for these kinds of issues: Navigate to Settings, select the Firm Settings tab, enter email in Two-Factor Authentication (2FA) Reset section, then click SAVE.
Once you’re aware that a client or team member is having trouble signing in, you can disable 2FA.
For a client:
Navigate to the Info tab of the client’s profile, click on the three-dots icon to the right of the client’s email address in the Contacts section, then click on the Disable Two-factor Authentication link.
For a team member:
1. Navigate to Settings, select the Team & Plans tab. Under the Active Team Members subtab, you’ll see which team members have 2FA enabled.
2. Click on the three-dots icon to the far right of the team member’s name, select Disable Two-factor Authentication, then click CONFIRM.