Settings
      Back to home
      1. Help Center
      2. How-to Guides
      3. Settings

      Two-Factor Authentication

      Two-Factor Authentication (2FA) enhances the security of user accounts by requiring an additional verification step during the login process.

      See below how the two-factor authentication feature works for agents logging into the HiJiffy console.

      login

      • If it is the agent's first login and no mobile number is associated to the account:
        • The agent is redirected to a page to add the mobile number (including the country code)

      Screenshot 2025-02-19 at 10.25.48-20250219-102554

      • Agents have the option of not wanting to add the mobile number. In this case, they can choose the options below: 
        • Remind me later: Next time the agent logs in, he/she will be asked to provide the mobile number 
        • I don't want to register my phone number: The two-factor authentication will be disabled and the mobile number will not be requested in future logins 
          • This option can always be changed on the user profile area when the agent is logged in (see below - how to manage two-factor authentication in the console once already logged in)
      • If the agent has inserted the mobile number, he/she will be redirected to a verification page where he/she must enter the 6 digit-code sent to their mobile phone 

      The agents will receive a SMS that looks like the one below: 

      image-20250219-103918

      • Agents may want to receive the code on their email, instead of the mobile phone. In this case, they must click on the option "use a different security option" - this can be helpful if by some reason the agents are not receiving the code on their mobile 

        • If email is chosen, the agents will receive an email similar to the one shown below:

      Screenshot 2025-02-19 at 10.43.44-20250219-104349

      Agents have 10 minutes to enter the code; after this period, the code will expire. They can request a new code every 20 seconds until the the 10minutes limit

      If the trust this browser checkbox is enabled, the browser will be remembered, and the two-factor authentication message will not appear again for 90 days.

      Screenshot 2025-02-19 at 10.26.11-20250219-102617

      IP Address Validation:

      • If an agent attempts to log in from a different IP address, we validate both the country and the city in comparison to their last login.

      • If there is a significant difference in either the country or city, an email alert will be sent to the agent notifying them of this activity.

      Screenshot 2025-02-19 at 10.34.56-20250219-103501

      The email above includes a link to reset the password. When the agent clicks on this link, he/she will be redirected to the form to reset their password.

      Screenshot 2025-02-19 at 10.51.15-20250219-105120

      Once the password is changed, all active logins will be forced to log out, ensuring account security.

      See below how to manage two-factor authentication in the console (once already logged in)

      Agents can manage their two-factor authentication settings at any time by visiting the following link: Profile Security Settings.

      • Here, they can:

        • Add or update their mobile number.

        • Enable or disable two-factor authentication

      Screenshot 2025-01-15 at 15.28.42-20250115-152847

      Video: