Security best practices now discourage the use of usernames and passwords for logging into applications securely. The prevalence of data leaks and phishing attacks means that even the most complex passwords leave too much risk. Security experts now recommend the use of a second or even third factor when logging into a system. This could include one-time passcodes (OTP) delivered via SMS, email or a phone call, biometric authentication like fingerprints, or a physical token like a Yubikey.
TaxBit requires the use of MFA to log into the Dashboard for organizations using our username/password authentication feature. We currently support physical tokens like the Yubikey or authenticator apps like Authy, Google Authenticator or 1Password. In the future, we are likely to enable additional methods like SMS or email OTP codes or biometric authentication.
Note: TaxBit Dashboard doesn’t require users to enable MFA when using a SSO.
MFA Setup
Initial login
After receiving an invite, the user will be prompted to create a password:
Next, choose an MFA method:
After following the prompts for your chosen MFA, record the recovery codes somewhere safe. These will be crucial to restore an account if the MFA is lost, inaccessible or destroyed.
Resetting MFA method
As a last resort, TaxBit can reset a user’s MFA settings to restore access to their account. Contact your CX representative to start this process.
When the user next logs in with their username and password, they will be required to set up MFA again before being allowed to access the Dashboard. All users must have an MFA method configured in order to log into the Dashboard.
Still have questions? Please reach out to us directly using the Submit a Request form in the top-right of your screen, or email help@taxbit.com and we'd love to help you out!
Disclaimer: Keywords below are added to articles to enhance searching for content within our Help Center.
Keywords
MFA
Authentication
Resetting MFA