Account Security - Two Factor Authentication

Account security: Two-factor authentication

Two-factor authentication (2FA) is an additional security layer for your account at RecoveryLink. Once configured, you sign in with your email and password plus provide an authentication code provided to your secondary device (telephone, tablet, etc.). RecoveryLink’s Staff Portal application supports two methods—both options require a mobile device.

- SMS: A verification code is delivered via text message.

- TOTP (Authenticator app): A verification code is generated via authenticator application.


Configure your account for two-factor authentication

Staff account holders may configure their own account by accessing the 2FA Settings page from the user menu.

For SMS configuration, please select the SMS option and input your telephone number capable of receiving SMS. Following the instructions on screen, input the SMS code to configure SMS 2FA. The system will then require you to log out and back in using the new SMS 2FA method. Once logged in again, your setup is complete.


For TOTP configuration, please select the TOTP option and scan the QR code with your phone. If you do not already have an authenticator app installed on your phone, we recommend first download Google's Authenticator app prior to the QR code scan. Please follow the instructions in your phone's authenticator app and then input the 2FA code on the RecoveryLink screen. The system will then require you to log out and back in using the new TOTP 2FA method. Once logged in again, your setup is complete.


Requiring two-factor authentication in your Enterprise

An Enterprise may require two-factor authentication for all staff accounts with memberships in the Enterprise - this includes all service organizations of the enterprise. At this time, enterprise administrators can not select the service organizations who will use this feature - it will always be all service organizations if the feature is turned on.

  • Please note that once enabled by the enterprise administrator, a 2-week compliance period will be provided to all staff members within the Enterprise. At the end of this period of time, users may still sign in but will not be able to access any records until two-factor authentication is configured for their account.
  • Exceptions to the Two-Factor Authentication requirement will not be possible with this feature enabled. In order to remove this requirement following the compliance period, Two-Factor Authentication must be turned off by the enterprise administrator.

Configure your Enterprise to require two-factor authentication Enterprise

Enterprise Administrators may configure the Enterprise requirements by accessing the Enterprise Profile from the Enterprise Library > Enterprise Profile option. Within the Enterprise Features block, please select the Two Factor Authentication Feature and then save your enterprise form. Once the form is saved, 2FA will be required for all staff members across the enterprise and the two week compliance window will begin.

Still need help? Contact Us Contact Us