Two Factor Authentication can be enabled as a feature for users in BrightPay. This feature is optional but recommended to help protect your data.
Two Factor Authentication is a second layer of protection to re-confirm the identity for users logging into BrightPay through an internet browser. This improves security, protects against fraud and lowers the risk of data breaches as users can access sensitive employer and employee data in BrightPay with the increased security layer.
In order to enable two-factor authentication on a BrightPay Organisation an owner or an administrator signs into the BrightPay Organisation and select > My Organisation > Manage Team Members and then select Two-Factor Authentication is Optional.

To enable two factor authentication for all members on the organisation select the option for ‘Require 2FA for organisation members’ and Save. When any team member on the BrightPay Organisation tries to sign into BrightPay they will be required to enter in a 6-digit security code. If the user has no method of receiving the 6-digit code, by default it will be sent to the team member’s email address. (Please check your spam folder, if you do not receive it)

If required, each team member can set up a specific method to receive the 6-digit code for their individual profile. In order to set this up, the team member must be logged into BrightPay.
Please select the profile icon in the top right-hand corner and select Manage My Bright ID.

Under the Security tab select 2FA Settings.

Under the 'Choose your preferred 2FA method' there are three options to select from:
- Authentication App, which is the preferred and most secure method. Use an authentication app that can generate a personal one-time code. Entering the code will be required to successfully log into BrightPay with your Bright ID
- Text Message – receive a text message containing your code to your mobile phone whenever you try to log into BrightPay with your Bright ID. Entering the code will be required to log in successfully.
- Email – receive an email containing a code to your email address whenever you try to log into BrightPay with you Bright ID. Entering the code will be required to log in successfully.

Note: To change the 2FA method once set, please select the profile icon in the top right-hand corner and select Manage My Bright ID.
Under the Security tab, select 2FA Settings. Then choose the new 2FA method that you would prefer from the three options available. Save the settings.
FAQs
Q. How do I reset my two-factor authentication (2FA) on my Bright ID?
A. For security and GDPR reasons, 2FA reset requests must come from an authorised contact. Please follow the instructions that match your role:
Employee
Please contact your payroll processor or manager and ask them to email our support team to confirm that you would like your 2FA to be reset.
Manager
Please contact your payroll processor and ask them to email our support team to confirm that you would like your 2FA to be reset.
Team member / Admin / Payroll Processor
Please contact your business owner or CEO and ask them to email our support team to confirm that you need your 2FA to be reset.
Client portal user (User / Super User)
Please contact your payroll processor and ask them to email our support team to confirm that you would like your 2FA to be reset.
Browser settings will usually remember user login credentials - if you wish to be prompted to have to enter login credentials each time, you will need to enable the 2FA settings (this applies to all users including employees).
For greater security, BrightPay Cloud supports two-factor authentication (2FA) for Employee Self Service Portal users. To enable 2FA, go to Employee Portal > Security Settings and follow the instructions to activate two-factor authentication. This ensures employees cannot access their portal without an additional verification step, even if their browser remembers login sessions
Comments
0 comments
Article is closed for comments.