Welcome to the Wingify Knowledge Base! This site is growing. If you can't find what you're looking for, visit help.vwo.com for more resources.

Start Free trial

Articles in this section

See more →

Managing Two-Factor Authentication (2FA) in Wingify

Jash Unadkat
  • Updated
Share:
Follow
close this to read article

This article covers the following: 

About Two-Factor Authentication

As the name implies, Two-Factor Authentication, or 2FA, is a two-level authentication mechanism that protects your data from cyber-crime and fraud. It assures that even if a third-party obtains your login credentials unlawfully, they will not be able to get past the additional layer of security provided by 2FA.

The first layer of authentication is done when you log in to an application using a username and password, face recognition or fingerprint scan. Once passing it, you will be taken to the second layer, which involves confirming your identity via entering an OTP - this is how 2FA typically works. If you lose access to the email or device that has your authenticator app, you can use the backup codes for authentication as a fallback method.

Two-Factor Authentication in Wingify

Wingify's Two-Factor Authentication fortifies the security of your Wingify account online, with an extra layer of authentication, which can be configured by either of the following modes:

  • Link an external authenticator app to generate a one-time passcode
  • Use email code verification
  • Use backup codes as a fallback authentication method

The configured mode of authentication will be applied to each of your sessions.

In Wingify, you can enable 2FA at the user level and workspace level. If enabled at the user level or the main workspace level, 2FA is performed at the login. If enabled at the workspace level, 2FA is required when switching to that workspace.

Note:

  • You will only be asked to perform the 2FA once each session (at login or workspace switching, whichever is first).
  • 2FA settings at different workspace levels are independent of each other i.e. the main workspace setting does not affect the additional workspaces. You must enable 2FA for each additional workspace via the corresponding settings.

Things to Consider Before Enabling Two-Factor Authentication in Wingify

  • If 2FA is enabled at the workspace level but disabled at the user level, the users will still be requested to input the passcode they received on their email.
  • If 2FA is disabled at the main workspace and user levels but enabled for an additional workspace, you will be prompted to enter the passcode when you switch to that workspace.
  • When you enable 2FA on a workspace level, all the corresponding users are notified of the same via email.
  • In the case of using an authenticator app, you are allowed 5 attempts each for enabling/disabling 2FA per 60 seconds to enter the passcode right. When the limit expires, you will have to wait till the 60 seconds get over to be re-enabled with another set of 5 attempts for 60 seconds. This applies for login sessions too.
  • For email code verification, you can only generate 10 passcodes per day, each for enabling/disabling 2FA. When this limit lapses, you will not be able to enable/disable 2FA for the next 24 hours through the email code verification method of authentication.
  • You can only generate fifty passcodes per day for logging in (including regeneration of passcode), using email code verification.
  • If you enable SSO on your Wingify account, you cannot enable 2FA; you can only enable either SSO or 2FA on your Wingify account.

Enabling 2FA at the User level in Wingify

To enable 2FA at the user level, follow these steps:

Procedure

  1. Log in to your Wingify account.
  2. Navigate to the Profile menu in the top-right corner, and select Settings.
  3. Go to Profile Details.
  4. Under the Security section, click Enable 2FA.
  5. In the Enable Two-Factor Authentication dialog that appears, select an authentication method from either of the following and click Proceed:
    • Authenticator app - By default, this option remains selected. You can choose this option to use any third-party authentication app to fetch a passcode.
    • Email code verification - Choose this option to use the passcode sent to your email address.
  6. If you have selected the Authenticator app option, you will be shown a quick response (QR) code. Scan the QR code with the authenticator app to link the app and generate a passcode. Alternatively, you can use the serial code that is displayed below the QR code. Once done, click Next Step to enter the 6-digit passcode, as generated in the authenticator app.
  7. If you have selected the Email code verification option, the system will send a 6-digit passcode to your email address. If you have not received the passcode, use the Resend option that regenerates a new 6-digit passcode.

    Note: The passcode, as received via email is valid for 10 minutes. If you have any problems with the created passcode, please contact us at support@wingify.com.
     
  8. Post entering the passcode, click Verify and Enable 2FA.

Post-requisite

To verify if 2FA is successfully enabled for your Wingify account, log out of your Wingify account and log in again. You must now be prompted to enter the passcode after you have entered your email address and password.

NOTE: To disable 2FA at the user level, click the Disable 2FA button. This triggers a 6-digit passcode to your authenticator app or email address, as configured. Enter the passcode in the Disable Two-factor authentication? dialog that appears and click Verify and Disable 2FA. If the passcode matches, your attempt to disable 2FA will be authorized and you will receive an in-app and an email notification confirming the action.

Use Backup Codes for Two-Factor Authentication

2FA backup codes provide a secure, self-service fallback authentication method to ensure you can always access your Wingify account. If you lose access to your primary 2FA method, such as your authenticator app or email, these single-use numeric codes allow you to bypass the standard verification step without requiring manual intervention from Wingify Support.

For example, if you enable 2FA using an authenticator app on your phone and later lose access to that device, you can use one of your previously downloaded backup codes during login to regain access to your account. This prevents permanent account lockouts and ensures your workflow remains uninterrupted even when your primary login methods are unavailable.

Note: When a user enables 2FA for the first time, it is mandatory for them to download the backup codes and use them as a fallback authentication method. These codes remain valid until they are exhausted. Users only need to generate a new set of backup codes after all previously downloaded codes have been used.

If you cannot access your standard 2FA codes configured on your authenticator app or email, here’s how you can use a backup code to complete the two-step verification process:

  1. On the Wingify login screen, enter your email and password.
  2. On the 2-Step Verification screen, select Enter a backup code.
  3. Enter one of your unused 6-digit backup codes from the backup codes file you downloaded when you enabled 2FA.
  4. Select Verify and Sign In.

To generate new codes:

  1. Navigate to Profile menu > Settings > Profile details > Security > Backup codes.
  2. Click Generate new code.

The Backup codes section displays the current count, for example, 10 codes remaining.

Note:

  • There is no limit on the number of times you can generate backup codes. Once your current set of 10 codes is exhausted, you can generate a new set.
  • Generating new codes immediately invalidates all previous codes in your current set. You must download a new set to maintain your recovery path.

Enabling 2FA at the Main Workspace Level in Wingify

Prerequisites

  • Enable 2FA on the user level for yourself.
  • You must have admin-level access or above in the main workspace.

To enable 2FA for all the users of the main workspace:

  1. Navigate to the Profile menu in the top-right corner, and select Settings.
  2. Go to Accounts > Security.
  3. Navigate to the Two-factor authentication enforcement section and select the Enable two-factor authentication option. This will enforce 2FA for every user from the very next login.
  4. To finalize this change, click Confirm in the confirmation dialog that appears.

NOTE: To disable 2FA for a workspace, deselect the Enable two-factor authentication option and click Yes, disable 2FA in the confirmation dialog that appears. You will receive an email notification confirming the action.

Workspaces with 2FA Enabled

To see the list of workspaces for which 2FA is enabled:

  1. Navigate to the Profile menu in the top-right corner, and select Settings.
  2. Go to Profile Details.
  3. Under the Security section, if 2FA is enabled for any workspace, you can see a list of those workspaces below the user level 2FA setting.

NOTE: When you consider changing the authentication method, you should first disable 2FA for yourself at the user level and re-enable the same after the change.

Need more help?

For further assistance or more information, contact Wingify Support.

Was this article helpful?

Return to top

Related articles