Docs

Two Factor Authentication 

Chargebee's Two Factor Authentication feature allows you to secure your Chargebee site with both a password and an additional code (valid once). It ensures that only authenticated users can access the site, keeping your sensitive payment and sales information safe, and affording you greater peace of mind.

Setting up Two Factor Authentication on Chargebee 

Two factor authentication is easy to set up and will keep your account safe from unwanted access, even if your password is compromised. To set it up, log into Chargebee and follow these steps

  1. Log in to your Chargebee user interface. On the bottom left corner, click Profile name > Manage Account/Edit profile > Two-factor authentication.

  2. Click Enable.

  3. You are presented with a QR code to be scanned using the authenticator app on your mobile device.

  4. Enter the 6-digit code that appears in your authenticator app and click Submit. This connects your authenticator app with Chargebee.

  5. Having successfully set up 2FA, you can use the 6-digit code generated by your authenticator app the next time you log into Chargebee.

  6. You need to disable Single Sign-On to enable two-factor authentication. To disable SSO, click Profile name > Manage Account/Edit profile > Go to Security. Under Authentication > SSO > click Disable > Confirm.

Note

You can disable the 2FA feature at any time by clicking the Disable option in the 2FA section on your Profile page. Once disabled, your account will be secured by your password alone. If you would like to enable 2FA once again, follow steps 1-5 again.

Recovery Codes 

It might be that you don't have access to your mobile device/authenticator app. Chargebee's recovery codes will come in handy at times like these. Enter one of your recovery codes when you don't have access to your authenticator app and you'll be able to access your account.

To download your recovery codes, go to your Profile from the Navigation Bar click Username > Edit Profile. You can also generate new recovery codes anytime by selecting Generate New Codes on the Profile page Username > Edit Profile, and download the updated set.

Note
  • Each recovery code is valid once. You cannot use the same recovery code twice.

  • Recovery codes are available only when two-factor authentication (2FA) is enabled.

  • Recovery codes are available for download as a .TXT file.

Remember device for 30 days 

It might be difficult to employ two factor authentication every time you are logging in to Chargebee, so the 2FA feature comes with a Remember me on this device for 30 days option. Enabling this option after you have setup two factor authentication means you won't have to use your authenticator app for the next 30 days. Added security, no extra hassle.

Enforce User Authentication Policy 

If there are multiple people using your site, security might be a concern. To set up an authentication policy for all the users of your site, check out our users page .

FAQ 

1. What happens if I lose my phone or don't have access to my mobile authenticator app?

If you lose your phone or otherwise don't have access to your mobile authenticator app, you can use Chargebee's recovery codes to log into your account. Remember to download your recovery codes after you finish setting 2FA up for your site. More on Recovery Codes here.

2. What happens if I don't have access to my mobile authenticator app or my recovery codes?

In case you don't have access to your mobile authenticator app and your recovery codes, contact support . Once we verify that an authorized user is trying to access the site (remember to send a mail out from your registered email id), we will disable 2FA in your site so that you can login with your password alone. You will have to set your 2FA up once again after you login.

Was this article helpful?
Loading…