Skip to main content
All CollectionsSecurity and Compliance
2-Factor Authentication (2FA)
2-Factor Authentication (2FA)

Learn more about how to enable and manage 2FA for your users.

Updated over 2 weeks ago

Caution:

  • As of April 10th, 2025, 2-Factor authentication will become mandatory for all users of the DataCandy platform.

  • Program administrators can also enforce 2FA activation by editing the user's configuration in the DataCandy platform. Only users with super admin access may enforce the use of 2FA. If you do not see that option for your user, please contact your head office.

With two-factor authentication, you can add an extra layer of security to your account; this reduces the likelihood of unauthorized individuals gaining access to your account and protects the data that is contained in the DataCandy platform!

Once it has been setup, you can sign-in with your password and a one-time code that can be sent by email or accessed through an authenticator mobile application .

Clarification:

If the email assigned to a user is shared with other users OR if there is no email attached to a user, the “email” option will not be available to receive the one-time passcode (OTP). Only the Authentication app option will appear at login.

By default, the authentication will occur once per 23h. You may change this at anytime by unticking the “Remember this device for 23h” box upon your next log in.

Activate 2FA

  1. Log into the Datacandy Back Office using your current credentials.

  2. On the top right corner, click on My Settings or the yellow alert icon. you will be redirected to your settings page. 

  3. Select Enable Two-Factor Authentication

  4. Download the Google authenticator app on your mobile. You may also use Microsoft Authenticator or another app of your choice; however, if you encounter any issues with your preferred authenticator, we recommend using Google Authenticator for the best experience.

  5. Once downloaded, open the authenticator app, click on the "+" icon and scan the QR code displayed in the back office with your mobile.

  6. Enter the one-time passcode (OTP) that is shown on your application.

  7. Select Confirm and Enable

  8. Your 2FA is now active. At your next login, you will be prompted to enter a OTP to be able to access the platform.

Log in with 2FA

  1. Visit the login page: https://app.datacandy.com/auth/login

  2. Enter your username and password, then select Sign In

  3. You will be prompted to enter an OTP. You have 2 options to get the OTP

    1. Via the authenticator app. Navigate to your authentication app on your mobile and locate the code that is shown for your Datacandy user.

    2. Via email. If this option is selected, the OTP will be sent to the email linked to your user. Note that if the email assigned to your user is shared with other users, it will not be available as an authentication method.

  4. Once your OTP is retrieved from the email or the authenticator app, enter your code. It will only ask you once every 23h.

Enforce 2FA for your users

If you wish to make 2FA mandatory for your user, ahead of the timeline provided by DataCandy, you may do so at any time by editing your user's configuration.

  1. From the main menu select Settings / Users / Search.

  2. Enter the desired search criteria to locate the user.

  3. Click Search. The results will be displayed as a list.

  4. Select the user you wish to edit. On the top right of the results list, you can select Edit.

  5. Locate the Enforce 2FA field and set it to Yes.

  6. Save.

At their next login, users will be prompted to activate 2FA for their user and will not be able to navigate away from the activation page until the configuration is complete.

Tracking 2FA activation for your users

Through the DataCandy Backoffice, you may track which users from your team have successfully activated 2FA , by navigating to the Settings/Users page.

You can filter the users based on their 2FA status and see the results in the search list under the 2FA column. This can be used to follow up with those that have not enabled it yet!

Useful tip:

If your user presents issues with their 2FA activation and is blocked from entering the Backoffice, your may restore their access by :

  1. Editing their user to set the Enforce 2FA field to No.

  2. Once saved, use the "Login as" functionality to impersonate them.

  3. Navigate to their user settings, located at the top right corner of the screen.

  4. Select Disable Two-Factor Authentication.

Once disabled, they will regain access to the DataCandy platform and may try to activate 2FA once again!

Got questions or need a hand? Just pop into the chat to talk to our team, or shoot us an email at [email protected] — we’re here to help!

Related Articles
Adjustments
Lights Out Promotions
E-Gift Portal Security
Add or Edit a DataCandy User
Did this answer your question?