What is two-factor authentication?
Two-factor authentication (further: 2FA) is an authentication method in which two factors need to be present in order to access to Legalsense. For Legalsense, the first factor are the username and password (credentials). The second factor is a temporary code, also known as a one-time password (OTP), that you can retrieve on a "device". A device can be a smartphone app like Google authenticator or Microsoft authenticator or a password manager with support for 2FA like 1Password. Only with the combination of the two factors will you have access to Legalsense.
How to enforce 2FA for your firm
An individual user can always activate 2FA for himself/herself (see the article Configuring Two Factor Authentication (2FA) for end-users). However, if you have administrator rights, you can also enforce 2FA for your entire firm (all users).
This is done under Settings > Security > Account settings.
Please note that, as soon as you enable this option, all users will be directed to the mandatory 'Add 2FA device' screen when they want to log in.
In order to successfully complete these steps, users need to have the ability to use a device that can generate the second factor (token or One-Time Password). This is, for example, a smart phone with a free authenticator app like Google or Microsoft Authenticator, or a password manager that offers the option to generate a 'One-Time Password'.
Exclude your firm network from 2FA
To prevent users from having to enter the 2FA code on the firm/office network as well, it is possible to whitelist specific IP addresses so that 2FA is not enforced for those locations. You can configure this by excluding the IP or the IP addresses of the office network under Settings > Security > Whitelisted IP Addresses.
Please note that you can also whitelist IP addresses of locations of third-party apps that integrate with your Legalsense environment.