Two-factor authentication (2FA) adds more security when you log in to ShipHawk TMS.

System administrators can enable two-factor authentication (2FA) to add more security when users log in to ShipHawk TMS.

With 2FA, you must use two ways to identify yourself for extra security. The first way is when you log in by entering your password; the second way is when you enter a special code sent to a separate device, typically your mobile phone. Information for regular users on how to access ShipHawk TMS with 2FA is available here: Using Two-Factor Authentication (2FA) in ShipHawk TMS .

As a system administrator, you can enable your ShipHawk TMS instance to use two-factor authentication (2FA). You can also manage the 2FA settings for each user.

Enabling 2FA

To enable 2FA for your ShipHawk TMS instance:

1. Go to > Settings > Permissions > System Access / 2FA.

2. Enable 2FA by selecting Enable two factor authentication for all users:
   
   

   Open

   

3. Once enabled, each user will need to follow the process described in
   Using Two-Factor Authentication (2FA) in ShipHawk TMS .

Resetting 2FA for a User

If a user gets a new phone or in some way losses their ability to access the 2FA code, as a system administrator, you can reset the 2FA for that user:

1. Go to > Settings > Users.

2. For the user, click the Reset 2FA button:
   
   

   Open

   

   
   The pop-up message explains “This will reset this user’s 2FA required to access ShipHawk. The user will be prompted to generate a new code the next time they login to ShipHawk.”

3. Click Reset 2FA (or Cancel).

4. When the user attempts to sign in, they will need to complete the “handshake” as described in Using Two-Factor Authentication (2FA) in ShipHawk TMS .