API ReferenceIntegrationsKnowledge Base

2-Factor Authentication

RazorpayX provides enhanced security and protection through 2-factor authentication(2FA) for all users of the Dashboard.

Normally, to log into the Dashboard, users enter their email address and password. When 2FA is enabled on an account, they are prompted to enter a one-time password (OTP) after this. The OTP is sent to their registered mobile number. 2FA can be enabled for:

By setting this additional layer of security, you can ensure that only the intended user has access to your Dashboard, thus preventing malicious attacks or misuse of your sensitive business data.

2FA for All Team Members#

As an owner, you can enforce 2FA for all users (team members) linked to your account. To enable 2FA for all your team members:

  1. Log into your Dashboard.
  2. Navigate to My Account & SettingsManage Team.
  3. Enable the Two-Factor Authentication for the team option.
  4. Enter the OTP sent to your registered mobile device.
  5. Enter your account password and confirm.

You have now set up 2FA as a mandatory step for all team members on your account. If a user did not provide their mobile number during sign up, they are prompted to do so on their next login.

The short animation below shows you how to enable 2FA for all your team members.

2FA for Your Account Only#

To enable 2FA for your account only:

  1. Log into your Dashboard.
  2. Navigate to My Account & SettingsUser Profile.
  3. Enable the Two-Factor Authentication option.
  4. Enter the OTP sent to your registered mobile device.
  5. Enter your account password and confirm.

You have now set up 2FA for your account only.

The short animation below shows you how to enable 2FA for your account only.

FAQs#

  1. What to do if a user account is locked?
    If a user enters the wrong OTP 9 times, their account will be locked for security reasons. In such scenarios, the user should contact their respective account owner. The account owner can unlock the users' accounts.

  2. What to do if a user loses their mobile device?
    If a user loses their mobile device, they should reach out to their respective account owner. The account owner can Reset 2FA for the user. The user will be asked to enter their mobile number the next time they log into the Dashboard.
    The short animation below shows you how the owner can reset 2FA for a team member.

  3. What to do if the account owner is locked?
    If you are the account owner and have entered the wrong OTP 9 times, your account will be locked for security reasons. In such scenarios, contact our Support Team to Reset 2FA for your account.

  4. What to do if the account owner loses their mobile device?
    If you are the account owner and have lost your mobile device, contact our Support Team to Reset 2FA for your account.