Enable two-factor authentication for host accounts
Introduction
ConnectWise ScreenConnect™ supports two-factor authentication (TFA) or multi-factor authentication (MFA), which requires a host to enter a second, one-time password to log into the Host page or the Administration page. This page will describe how to set up two-factor authentication and apply it to certain hosts.
Tip: You can also add two-factor authentication to your cloud administrator account.
Supported two-factor authentication methods
Important: Make sure you know how to recover or reset your setup in case you replace your phone or mobile device.
ScreenConnect currently supports the following authentication methods:
- Google Authenticator
- YubiKey
- Microsoft Authenticator
- LinOTP
- Duo Security "push" alerts
These authentication methods can be mixed and matched amongst your users for further flexibility.
Select a two-factor authentication service
For configuration instructions, select a two-factor authentication service.
Trust this device
When a host has two-factor authentication enabled, they can select the Trust this device checkbox. If the checkbox is selected, the host will not need to enter a one-time password from their current machine or mobile device for thirty days.
Tip: You can disable the "Trust this device" feature using the Advanced Configuration Editor.