Skip to main content

Two Factor Authentication (2FA)

Updated

Two-factor authentication (2FA) is an extra layer of security designed to ensure that only authorised users can access your account or CMS. It requires two forms of verification:

  1. Something You Know - Typically, this is your password.

  2. Something You Have or Are - Examples include a verification code sent to your phone, an authenticator app etc. 

By combining these two factors, 2FA strengthens security beyond just relying on passwords.

Why is two-factor authentication important?

Protection Against Password Compromises: Even if a password is stolen through phishing, data breaches, or weak password use, 2FA prevents unauthorised access by requiring an additional verification step.

Defence Against Common Cyberattacks: 2FA protects against:

  • Phishing attacks

  • Brute-force password attempts

  • Credential stuffing (reusing passwords across platforms)

Compliance with Security Standards: Many industries and regulations e.g., GDPR require 2FA for systems that handle sensitive data which many of you are handling especially with lead capture.

What to expect when setting up 2FA?

When you log into your CMS, after entering your password, you will receive a notification prompting you to set up two-factor authentication (2FA) immediately  (configure now) or postpone it (later). You have a 10-day grace period before 2FA becomes mandatory.

If you choose "Configure Now," you'll be logged into the CMS and guided through a step-by-step setup process.

You can authenticate using one of the following methods:

  1. Authenticator App: If you already use an authentication app (e.g., Microsoft Authenticator, Duo) for your university systems, you can use the same app no need to download a new one.
  2. Email: You will receive a one-time passcode (OTP) via email each time you log into your CMS.

Authenticator App (highly recommended option)

If you select this option, you'll be provided with a QR code to scan using your authentication app. Follow the on-screen instructions to complete the setup.

 

Email (Make sure you inform you tech team to allow emails from support@vepple.com  to avoid delays with receiving OTPs)

If you choose this option, you'll be asked whether you want to use your current CMS email or a different email address. We recommend using your registered CMS email for consistency and easier access.

Once you've confirmed your email, click "I am ready." You will then receive a one-time passcode (OTP) from support@vepple.com to complete the setup.

What happens when the 10 days elapse?
  • You will be prevented from accessing the dashboard once you log in until you configure 2FA.

Why Am I Locked Out of My Vepple Account?

  • This is likely because you have not set up the required 2FA within the first 10 days of logging. In order to unlock your account, please contact Vepple support.
What if you are logged out?
When setting up their  2FA, you will be given 10 backup codes that they can save and use in case you can't access their Auth App.

Related articles

Comments

0 comments

Please sign in to leave a comment.

Powered by Zendesk