Enabling or Disabling Two-Factor Authentication at the User Level

You can enable or disable two-factor authentication at the user level, which overrides any setting you made at the site level or at the role level.


Enabling two-factor authentication for a user locks that account until the user is able to enter an authentication password. Ensure the user is trained and has an authenticator installed on a device before enabling two-factor authentication.

  1. From the Navigation Menu, select Admin > Users & Roles.
  2. In the Users widget, select the user for whom you want to enable or disable two-factor authentication. The Edit Tool User widget appears.
  3. Under the Advanced tab, from the Two-Factor Authentication Required field, make one of the following selections:
    • Default—User’s two-factor authentication setting is the same as at the role level; if that level is set to Default, user’s setting is the same as at the site level.
    • Required—User needs two-factor authentication to log in.
    • Not Required—User does not need two-factor authentication to log in.
  4. Click Save.

See also: