What is 2FA and why is it required?
2-Factor Authentication (2FA) adds an extra layer of security to your account, ensuring that even if someone obtains your password, they can't access your account without a second verification step. In addition to your password, you’ll confirm your identity through a second method – a code generated by your authentication app or sent to your email.
To keep your data and domains secure from unauthorized access, 2FA is a mandatory login requirement for all BrandShelter users. This protects your data, your portfolio, and your domain settings.
We strongly recommend adding a mobile number to your user account. This will allow you to authenticate your identity easily if you encounter login issues or other access problems.
Please note that 2-factor authentication applies only to direct portal logins (BrandShelter username + password) and does not apply to SSO login.
What authentication methods are supported?
You can use one of the following methods:
- Email Verification Code (activated by default)
- Authenticator App (e.g., Google Authenticator, Microsoft Authenticator, KeePassXC or another authenticator app of your choice)
Please note: The authenticator app provides the most secure and convenient login experience.
How do I set up 2-factor authentication using an authenticator app?
1. Setup in BrandShelter portal - Access Authenticator Settings:
-
Go to Account Settings > Personal data.
- Scroll down to “2-Factor Authentication (2FA)”.
- Click on “Set up and link an authenticator”.
2. Scan QR Code (or manually enter the setup key into your app):
- Open your Authenticator App on your mobile device or computer (e.g., Google Authenticator, Microsoft Authenticator, KeePassXC or another authenticator app of your choice). We strongly recommend to install it also on your computer.
- Tap the “+” icon to add a new entry.
- Choose “Scan a QR Code” and scan the QR code displayed on BrandShelter portal. This process sets up BrandShelter within your Authenticator app, adding it to your list of authenticator applications. To add it on a computer, use the key associated with the QR code.
3. Verify Setup:
- View the newly added BrandShelter entry on your Authenticator app.
- The app will display a time-sensitive code for BrandShelter. This is the authorization code or TOTP (Time-based One-time Password) / TAN (Transaction Authentication Number).
- Enter this verification code (TOTP / TAN) generated by your app into the field provided for this purpose on the BrandShelter panel to verify the setup.
4. Note Fallback Codes:
- BrandShelter will provide you with five "Fallback" codes.
- Save these codes securely. If you ever loose access to your authenticator, you can still use one of your backup codes to access your account.
5. Click on Activate: it's done! 2-factor authentication by application is now enabled on your user account.
------------------------------------------------------------------------------------------------------
Help with Google Authenticator: https://support.google.com/accounts/answer/1066447?hl=en&co=GENIE.Platform%3DAndroid
Other Authenticator Apps:
------------------------------------------------------------------------------------------------------
How do I change the two-factor authentication method on my user account?
You can manage and change the two-factor authentication method enabled on your user account from rights management (requires user permissions management rights).
Important: If you choose 2-factor authentication by authenticator app, you only need to connect the application of your choice by going to Account Settings > Personal Data > Two-Factor Authentication (2FA).
As soon as the app is linked, it automatically activates this 2-factor authentication method on your user account the next time you log in.
- Navigate to Account Settings > Users
- Hover over the three burger lines and click “Edit permissions”.
- Scroll to the bottom of the page and locate the “2-Factor Authentication (2FA) Settings” section.
-
Check the "Email authentication" box to enable 2FA using a code sent by email to your user account address (make sure you have entered a valid email address).
If you want to enable it using an authenticator app, go to Account Settings > Personal Data > 2-Factor Authentication (2FA) and click on "Set up and link an authenticator app" to set up and link the authenticator of your choice. It will be activated immediately by clicking on the "Activate" button.
To help you, you can follow the steps below "How do I set up 2-factor authentication using an authenticator app?".
- Click the "Save" button to finalise changes.
Frequently Asked Questions
What happens if I haven’t set up an authenticator app?
If you haven’t activated an authenticator app, a verification code will be sent to your registered email each time you log in.
- The code is valid for 15 minutes.
- If you don’t receive the email, you can request a new code after 5 minutes from the 2FA prompt page.
I didn’t receive the email code. What should I do?
- Wait 5 minutes and click “Resend Code” on the 2FA prompt page.
- Check your spam or junk folder.
- If you still don’t receive the code and cannot use an authenticator app, please contact our Customer Care Team or your Account Manager.
Can I disable 2FA on my account?
2FA is mandatory for all users to protect your account and data.
If you’re having trouble setting it up or signing in, please contact Customer Care or your Account Manager for help.
My authenticator app code isn’t working. What should I check?
- Make sure the code hasn’t expired (codes refresh every 30 seconds).
- Wait and generate a new code.
- Double-check your device’s time and date settings – they must be accurate.
-
If you see an error, refresh the setup page and try again.
Will I need to enter a code every time I log in?
Yes. Once 2FA is enabled, you’ll enter a quick verification code from your authenticator app or email each time you log in – helping ensure your account stays secure.