Two-factor authentication (2FA) is a feature for users on our Advanced or Enterprise plans.

To enable this feature, navigate to Settings > General and switch on the toggle for your desired user group(s).

If 2FA is enforced, anytime a user logs into Copilot, they will be prompted to enter a code from their authenticator app.

If a user have not yet configured 2FA, they will be prompted to scan a QR code using their authenticator app and enter the provided code. This only needs to be configured once.

Subsequent logins after 2FA has been configured will only ask for the code provided in the authenticator app.

All surfaces of Copilot are protected by 2FA. For users that have 2FA enforced/enabled, we do not persist session data, meaning they will need to log into Copilot with 2FA each time they access the workspace or client portal.

2FA using authenticator apps is quickly becoming an industry standard. Most of your clients and team members likely already have an app they prefer. If you need suggestions, below is a list of the most popular authenticator apps:

• Google Authenticator: A trusted app that generates time-based OTPs for secure logins. It also allows users to sync codes across devices and accounts.

• Microsoft Authenticator: An app that supports multi-factor authentication (MFA) and two-factor authentication (2FA). It also offers biometric verification, such as fingerprint or facial recognition.

• Authy: A popular authenticator app.

• Duo: A popular authenticator app.

• 1Password: A popular password manager that also supports MFA