Enable and manage 2-step verification
In this article:
- What is 2-step verification?
- Enabling 2-step verification in your account for all users
- Enabling 2-step verification for your user profile only
- How does 2-step verification work if you have more than one LGL account?
- Why am I being asked for a verification code again even though I've selected not to be asked again?
What is 2-step verification?
2-step verification, also known as 2-factor authentication, is a security feature that protects your LGL account from unauthorized access.
It works by requiring that you enter an additional verification code after you have logged in using your password. You can receive the verification code either through an email that LGL sends to the email address associated with your LGL account (this occurs by default) or through an Authenticator app (which can be set up on a by-user basis from the user’s My Profile page). Authenticator app options include Google Authenticator, Microsoft Authenticator, Last Pass Authenticator, and other established authenticators.
2-step verification can be enabled in one of two ways:
- Account-wide, applying to every user/team member in the account
- For your individual user/team member profile
Enabling 2-step verification in your account for all users
Account-wide 2-step verification can be turned on in your LGL account by any Administrator, at which point it will be turned on for all users in the account. Each user will be required to use it.
If you are an Administrator, you can follow the steps to enable 2-step verification for your LGL account. Taking this action will require all users in the account to log in using a verification code either from an email sent to the email address in their LGL team member profile or via an Authenticator app (recommended).
To set up 2-step verification for your entire LGL account, follow these steps:
- Go to Settings > Subscription Settings > General, and at the bottom of that page click the “Require 2-step verification” toggle.
With the setting now activated, the first step of the login process is the same as it was previously.
However, instead of being logged in after completing that first step, you’ll see a request for a verification code, which has been emailed to the email address saved in your LGL account’s user profile (or use the code generated in the Authenticator app, if setup for that has been completed).
Here’s what the email you’ll receive that includes the verification code will look like.
Subject: Little Green Light verification code
From: noreply@littlegreenlight.com
Email body:
IMPORTANT NOTE: Be sure not to enable this option on a public computer or one that you don’t use regularly as doing so would make it easier for someone else to log into your account as you.
Enabling 2-step verification for your user profile only
Even if 2-step verification has not been turned on at the account level in your LGL account, you can still turn it on for yourself if you’d like to apply this extra layer of security.
Your My Profile page also allows you to make customizations to how you use 2-step verification, if it is in effect account wide.
You can choose the method of verification: By email or through using an Authenticator app such as Google Authenticator, Microsoft Authenticator, Last Pass Authenticator, or another established authenticator.
What if you don’t want to use 2-step verification, but it’s been turned on for your account?
It is not possible to disable 2-step verification once it has been set up in your account.
Users can, however, pause additional re-verification for the time period allowed by the account-wide setting (either 24 hours or 30 days) by clicking the toggle shown in the screenshot below.
You can also select to generate recovery codes (see the next section for instructions) if you want to ensure you’ll be able to log into LGL even if you do not have access to your Authenticator app or your email. Examples of when recovery codes can be used include while traveling, if you can’t get into your email because you’re using a different computer than the one you normally use, or if you misplaced or don’t have access to your phone and therefore don’t have the Authenticator app or your email account available.
Recovery codes should be generated ahead of time and kept in a safe location such as your password manager, where you can access them when you need them.
To set up 2-step verification for your user/team member profile, navigate to your My Profile page and click 2-Step Verification in the side menu, as shown here.
Click the toggle and select your preferred method of verification.
If you select to use an Authenticator app, you’ll need to set it up using a QR code, as shown below.
You can then use your phone camera or type in the setup key to add Little Green Light to your Authenticator app.
Generate recovery codes to access your LGL account when you don’t have access to your Authenticator app or email
Recovery codes are one-time use codes you can utilize to access your LGL account. LGL will generate 10 at a time that you can store in a safe place such as Last Pass. Printing them and keeping them somewhere safe is another option.
You can generate recovery codes from your My Profile > 2-Step Verification page, as shown here:
How does 2-step verification work if you have more than one LGL account?
Once you are verified in one LGL account, you are automatically also verified across all of the other LGL accounts you can log into (for the length of time allowed by those accounts).
Why am I being asked for a verification code even though I've selected not to be asked again?
If you believe you shouldn’t be seeing the verification code prompt but you are still seeing it, there are a few reasons why this may be happening.
- Keep in mind that the prompt doesn't work across web browsers, so if you've checked the box in one browser and are now using a different browser, you may see the prompt again. This can also happen if you are using your browser in incognito or private mode, which is available in some web browsers.
- If you are sure you should not be receiving the prompt and the first item (just above) does not apply to you, the next step is to confirm that you've checked the box asking not to see the prompt again.
- If you have any of the following browser settings enabled, you will need to turn off the setting to discontinue receiving the verification code question:
- "Keep local data only until you close the browser" - Chrome
- “Keep until: I close Firefox” - Firefox