Two-Factor Authentication (2FA) increases security when accessing timeSensor LEGAL 365, as it requires a second verification step in addition to a password. This makes it harder for hackers to access an account, even if they know the password. This additional layer of protection reduces the risk of unauthorized access and identity theft. In timeSensor LEGAL 365, we have chosen to implement TOTP (
Time-based One-Time Password). This is an additional password in the form of a six-digit numeric code, which changes every 30 seconds.
2FA in timeSensor LEGAL 365
Requirements
You will need the latest version of timeSensor LEGAL 365 and a smartphone with an Authenticator app, such as Microsoft Authenticator or Google Authenticator.
Enabling Authentication
Each user on your team must enable Two-Factor Authentication on their own user account. A new checkbox is available in the login data section for this purpose. When 2FA is activated, the following dialog box opens.
Each user must then launch the chosen Authenticator app on their smartphone and add timeSensor. The displayed code can be scanned for this purpose. To verify functionality, the six-digit numeric code generated by the Authenticator app must then be entered into the dialog field. By clicking the Check and Save button, the entered code is verified, and if correct, the dialog box closes and Two-Factor Authentication is enabled for the user account.
2FA only adds value if every team member sets it up. Therefore, a new "2FA" column has been added in the user dialog so that you can check that all users have activated it. To allow timeSensor support to assist you, 2FA must also be enabled for the Support account. Just send an email to
hotline@timesensor.com, and our support team will enable 2FA for the Support account as well.
Using 2FA
Once 2FA is enabled for a user, the second factor is requested after entering the password. Consult your Authenticator app to retrieve the currently valid numeric code and enter it. Once successfully logged in, you can switch between entities (data rooms) without being asked for the second factor again.
Single Sign-On (SSO)
If SSO is enabled for your organization, the second factor will not be requested.