2FA: two-factor authentication
Your Pipedrive account contains valuable business information, customer data and possibly access to other integrated tools. It’s your business’s lifeline, so you should always keep it safe.
A strong password can help keep your account and data safe, but it’s still vulnerable to data breaches, brute-force attacks, and phishing.
Two-factor authentication, or 2FA, adds another layer of security to your personal information.
We suggest enabling it for your Pipedrive user account.
Where can I find 2FA?
Go to Personal preferences> Password and login > Two-factor authentication (2FA), and you’ll have two options to select from:
- Authenticator app: allows you to select a specific app as the second step of authentication
- Email verification: sends a verification email as the second authentication step
Enforcing 2FA for all users
You can toggle this option to enforce 2FA for all users.
Each user will only need to be verified every 30 days on each device.
Authenticator app
Implementing two-factor authentication (2FA) with an authenticator app significantly enhances account security by requiring a second form of verification beyond the traditional username and password. This reduces the risk of unauthorized access, as attackers would need both the password and the physical device to generate the authentication code.
Benefits of 2FA with an Authenticator App
- Enhanced Security: Authenticator apps generate time-sensitive codes, making it difficult for attackers to gain access even if they have the user’s password
- Protection Against Phishing: Since the code is generated on a separate device, phishing attempts to steal passwords are less effective
- Reduced Account Compromise: Data breaches involving password theft are mitigated, as the second factor is required for access
- User Control: Users have more control over their account security with an additional layer of protection
To enable this option, click on “Connect authenticator app”.
Once you click it, you may be asked to re-enter your password for security purposes.
Then, you’ll need to connect your Pipedrive account to the authenticator app of your preference. There are two ways to do it:
- Scan the QR code with your authenticator app
- Enter a 6-digit code from your authenticator app
After successfully connecting your authenticator app, you’ll see a screen with backup codes.
These codes can be used to access your account if you lose access to your authenticator app.
Once the 2FA with the authenticator app is successfully set up, you’ll receive an email confirming the changes.
Email verification
We recommend using an authenticator app as the second layer of protection for your account. If that isn’t possible, you can also use email verification as a simpler, but less secure, 2FA option.
Be mindful that, since your password can also be reset via the same email, an attacker only has to compromise your email inbox to take over your account.
When enabled, logging in to Pipedrive will trigger a verification email to the email address you use to log in.
When you log in from a web browser, the email includes a verification link. Click the “Open Pipedrive” button or open the link in the same browser you used to start logging in.
When you log in to the mobile app, you‘ll receive an email with a one-time verification code similar to this one:
Copy the code and paste it into the mobile app to complete the verification.
That same email will provide you with information about where the verifiable login occurred.
Was this article helpful?
Yes
No