We take security seriously. To prevent unauthorised use of your account, we recommend enabling multi-factor authentication (MFA) for your Smartly user account when logging in with user name and password.
Requiring a second authentication method provides additional security to your user account. If MFA is not enabled, a malicious actor who gains hold of your account password will be able to login access your Smartly user account. When MFA is enabled, an extra second step required for login will make things more difficult for a malicious actor.
Multi-factor authentication means that logging in to your account requires both: your password and an second authentication method. In the Smartly app, we support several ways of multi-factor authentication steps as the second method.
Supported MFA methods
The multi-factor authentication methods that Smartly supports are:
- One-Time-Password (OTP): a one-time code generated by the authenticator app on your phone is required in addition to your password. Without the code, your user account cannot be accessed.
- Recover code: A unique recovery code.
- Device Biometrics: Fingerprint authentication or any other biometric possibility offered by your device.
Remember that enabling MFA does not remove the need for a strong and unique password. We strongly recommend using a password management app for it. There are many available on the web, google it.
See our Password policy for more information. If you ever suspect that someone has gained hold of your password, change your password immediately.
About device biometrics
When using device biometrics, you can only link your device biometrics to one browser profile. You won't be able to login to the Smartly platform on a different browser profile, even on the same browser.
To log in using a different browser profile, select an alternative MFA method, either OTP or recovery code.
Set up Multi-factor authentication in Smartly
- In Smartly, click your user name on the top navigation bar and click My Profile.
- If you are not solely using SSO as the login method, you will see the Reset Multi-Factor Authentication button.
- Click the button and follow the instructions.
Note: If your company has enforced the use of Multi-factor authentication, you will have to set it up when setting it up your Smartly user account for the very first time.
Using a one-time-password (OTP) as MFA
If you want to use one-time-password (OTP) as your multi-factor authentication method in Smartly, you need an app that will provide you a one-time code installed either on your laptop, smartphone or tablet. There are many apps available, some of the most common are: Google Authenticator, Twilio Authy or 1-Password (this app is also a password management)
I lost or want to change the device where the app is installed
If you lose or want to change the device where you've installed the one-time-password authentication app, worry no more, you can still access the Smartly app by using a different MFA method instead.
Still, to reset the use of your OTP app, follow the specific instructions suggested by the app provider your are using. You will easily find these instructions by googling it.
The code provided by the app is not working
Usually one-time-password apps use the device's system clock to calculate the verification codes for a given timestamp. If you find that code provided by the app does not allow you to log in, enable automatic time and date sync on your device and try again.
Test if your device is reporting the time and date correctly by opening this web address on the device you have set up the app: https://app.smartly.io/login/time/
In case, enabling automatic time and date sync does not work on your device, try deleting the code on your one-time-password app and then adding it again. Note, that in order to add it again, you will have to do it next time you login to Smartly when choosing the MFA option to use.