Enforce two-factor authentication
Enforce 2FA
Turning on two-factor authentication (2FA) boosts security. Every member must add a one-time-password (OTP) app such as Authy or Google Authenticator before they can reach Katapult.
-
Sign in at identity.krystal.io.
-
Select Organization in the left sidebar.
-
Select the organization you wish to enable 2FA for.
-
Navigate to Service & Settings.
-
At the bottom of the dashboard, select Require two factor authentication for all users.
- Accept the confirmation prompt to enable 2FA.
warning
- As an organization owner, you must have 2FA enabled on your account in order to enable 2FA for org members.
- Activating 2FA for your organization will automatically remove any users who have not set up two-factor authentication.
Disable enforcement
If you need to roll back:
- Return to Settings → Security.
- Select Disable two factor authentication requirement for all users and accept the on-screen alert.
- Save.
Users can keep 2FA already configured, but it is no longer mandatory.
info
If you change the 2FA setting for a parent organization, it does not apply to any managed organizations.