Two-Factor Authentication (or 2FA for short) is an extra layer of security for your cove.tool login. It's easy for a malicious actor to get a hold of your email or password, so using 2FA helps to protect your account by adding an additional form of identification using your personal smartphone.

Enabling Two-Factor Authentication for your business is only a few clicks away! Begin by navigating to the cove.tool app and locating the dropdown in the top-right corner of the page. From there, select Your Business. This setting is only visible to the business's administrator user.

On the Your Business page, locate the Enforce Two-Factor Authentication checkbox. Check the box, then click the Save button to confirm your settings.

After enabling Two-Factor Authentication, you should then be automatically redirected to the following page. You will need a smartphone with you for this step.

There are a variety of smartphone apps you may use as your authenticator including Google Authenticator, LastPass, and Microsoft Authenticator. We recommend using Google Authenticator, and the rest of this article will guide you through how to set it up.

Once the app is downloaded on your smartphone, locate the + button in the bottom-right corner of the screen and tap it.

A menu should appear. Select the button labelled Scan a QR code. This should prompt your camera to open. Point the camera to the QR code displayed in the cove.tool app and Google Authenticator should recognize it automatically. If successful, you should now see an entry in Google Authenticator containing your cove.tool email address and a 6-digit code.

In the cove.tool app, type a name in the Device Name field. This can be anything you'd like and will be the name associated with the device you just registered in the previous step. In the Authentication Code field, enter the 6-digit code displayed in Google Authenticator. Note that this code will refresh itself every 30 seconds. Click the Register button once completed.

You will then be directed to the cove.tool login screen. Once again, enter the code displayed in Google Authenticator. Check the Trust this agent box if you wish for cove.tool to remember this device the next time you log in. Note that this setting will only remember your device. You will still need your password to log in as usual. Once completed, click the Verify button. Congratulations, your device is now registered to your cove.tool account!

If you are the business administrator, you can set the maximum number of days your users' devices can remain trusted. To change this setting, navigate back to the Your Business page. You should now see a new field show below.

By default, your users' devices will be trusted forever. If you choose to set a limit, users will need to register their smartphones with their accounts again after the specified number of days. To set this limit, simply enter any number in the field then click Save to confirm it.

Both the administrator and regular users have access to these settings. To access them navigate to the Two-Factor Authentication page located in the dropdown in the top-right corner of the cove.tool app.

You will be greeted by the following form. From here, you have the option to add a new authentication device, revoke trust from one or more devices, update or remove your current devices, generate backup codes, or set the number of days to trust your devices. Note that the maximum number of days you may trust your devices is set by the business administrator.