Hygiara
Sign In
Documentation / Settings And Users

Settings And Users

Two-Factor Authentication

How to enable two-factor authentication, use recovery codes, and manage trusted devices.

What this page is for

This page explains how to enable two-factor authentication (2FA) on your Hygiara account and how to manage it.

When to use it

Enable 2FA when:

  • your organisation requires it for all users
  • you want to protect your account with more than a password
  • you are an admin and want to set an example for the rest of the workspace

How to enable 2FA

  1. Go to Settings.
  2. Click the Security tab.

Security settings page

  1. Click Enable Two-Factor Authentication.
  2. Open your authenticator app (Google Authenticator, Microsoft Authenticator, Authy, or any TOTP-compatible app).
  3. Scan the QR code displayed on screen, or enter the setup key manually.
  4. Enter the 6-digit code your authenticator app generates to confirm setup.
  5. Click Enable.

2FA is now active on your account. The next time you sign in, you will be asked for a code after entering your password.

Recovery codes

After enabling 2FA, Hygiara gives you a set of recovery codes. These let you access your account if you lose your authenticator device.

  • Download or copy the recovery codes and store them somewhere safe (not the same device as your authenticator).
  • Each recovery code can only be used once.
  • If you run low on unused recovery codes, generate a new set from the Security tab.

Signing in with 2FA

When 2FA is enabled, the sign-in flow becomes:

  1. Enter your email and password.
  2. Enter the 6-digit code from your authenticator app.

If you cannot access your authenticator app, click Use a recovery code on the 2FA prompt and enter one of your saved recovery codes.

Managing trusted devices

If you check "Trust this device" at sign-in, Hygiara will not ask for a 2FA code for 30 days on that device.

To revoke trusted devices:

  1. Go to SettingsSecurity.
  2. Under Trusted Devices, find the device you want to revoke.
  3. Click Revoke.

That device will be asked for a 2FA code on its next sign-in.

Disabling 2FA

  1. Go to SettingsSecurity.
  2. Click Disable Two-Factor Authentication.
  3. Enter your current 2FA code to confirm.

Common mistakes

  • Not saving recovery codes before leaving the setup screen — you cannot retrieve them later
  • Using the same authenticator device as your only recovery path
  • Revoking all trusted devices while also losing access to your authenticator — use a recovery code to regain access

Next step