2-Step Verification
Banno supports a variety of 2FA verification options that you can easily update. When 2FA is enabled, end users are required to be enrolled in at least one of the following methods:
- Authy
- Phone/text message
- Authenticator App
- FIDO security key
- Passkeys
- Symantec hardware/software tokens
How does it work?
- Settings
- 2-step verification
Managing 2FA settings are pretty easy. Simply toggle the switch to enable or disable an individual setting. When a setting’s disabled, it also won’t display to end users as a 2FA option in Banno Apps.
It’s important to note that not all enterprise users might not have access to change 2FA settings. Because we consider changing 2FA options a high-risk change, an enterprise user will need to be in a group with 2FA enabled.
Email verification
Whether an end user is new to 2FA or has removed their 2FA methods, enabling Email verification will require end users to validate a one-time password sent to their email on file in core or in their Banno profile. Once an end user enrolls in a 2FA method, this step is no longer required.
FAQ
- Can we enable 2FA over email?
- If you want to enable 2FA over email, you will need to open a case with our support team and sign a waiver of liability.