New in Chargebee: Explore Reveal and understand your payment performance end-to-end.Try Now

Docschargebeedocs

HomeBillingPaymentsRevRecGrowthReveal
Support

Product Updates

  • Release Notes

Getting Started

  • Overview
  • Chargebee Billing Data Centers
  • Object Relationship Model
  • Understanding Sites
  • Chargebee Tech Glossary
  • Articles and FAQ

Implementing Chargebee

  • Implementation Guide
  • Go-live Checklist
  • Articles and FAQ

AI in Chargebee

  • Chargebee Agents
  • Chargebee Copilot
  • Chargebee MCP Server (Model Context Protocol)

Developer Resources

  • Developer Resources Overview
  • Articles and FAQ

Product Catalog

  • Product Catalog Overview
  • Coupons
  • Articles and FAQ

Subscriptions

  • Working with Subscriptions
  • Billing
  • Orders
  • Articles and FAQ

Customers

  • Managing Customers
  • Account Hierarchy
  • Email Notifications
  • Branding
  • Configure Multiple Languages
  • Articles and FAQ

Entitlements

  • Entitlements Overview
  • Features Overview
  • Feature Management
  • Managing Product Entitlements
  • Subscription Entitlements
  • Customer Entitlements
  • Grandfathering Entitlements
  • Articles and FAQ

Usage Based Billing

  • Understanding Usages
  • Setting up Usage Based Billing
  • Usage Alerts
  • Metered Billing
  • Articles and FAQ

Chargebee CPQ

  • Chargebee CPQ
  • Chargebee CPQ for Salesforce
  • Chargebee CPQ for HubSpot

Invoices, Credit Notes, and Quotes

  • Invoices
  • Credit Notes
  • Quotes [Legacy]
  • Transactions
  • Articles and FAQ

Taxes

  • Overview
  • Configuring Taxes
  • Country-specific Taxes
  • Articles and FAQ

Hosted Capabilities

  • Overview
  • Hosted Checkout
  • Hosted Self-Serve Portal
  • Hosted Pages Features
  • Additional Hosted Pages
  • Payment Components
  • Pricing Table
  • Managing Payments with Chargebee.js
  • Mobile-Optimized Hosted Pages
  • Articles and FAQ

Site Configuration

  • Users & Roles
  • Custom Fields & Metadata
  • Approvals
  • Mandatory Fields
  • File Attachments & Comments
  • Advanced Filter Options
  • Multicurrency Pricing
  • Multi-decimal Support
  • Configuring Reason Codes
  • Events and Webhooks
  • API Keys
  • Time Zone
  • Time Machine
  • Transfer Configurations
  • Articles and FAQ

Multi Business Entity

  • Multi Business Entity Overview
  • Customer Transfer Overview
  • Articles and FAQ

Mobile Subscriptions

  • Overview
  • Omnichannel Subscriptions
  • Omnichannel One-Time Orders
  • Mobile Subscriptions (Legacy)

Reports and Analytics

  • RevenueStory
  • Home Dashboard
  • Frequently Asked Questions
  • FAQs for Classic Reports Sunset
  • Articles and FAQ

Integrations

  • Sales
  • Customer Support and Success
  • Finance
  • Tax
  • Marketing
  • Stitch
  • Collaboration
  • Contract Management
  • Ecommerce Management
  • Articles and FAQ

Data Privacy & Security

  • Two Factor Authentication
  • SAML Single Sign-On
  • System for Cross-Domain Identity Management (SCIM)
  • EU-GDPR
  • Consent Management
  • Personal Data Management
  • Compliance Certificates
  • HIPAA Guidelines
  • PCI Recommendations and Integration Types
  • Articles and FAQ

Data Operations

  • Bulk Operations
  • Migration
  • Articles and FAQ
  1. Billing
  3. Data Privacy & Security
  4. Two Factor Authentication
  1. Billing
  3. Data Privacy & Security
  4. Two Factor Authentication

Two Factor Authentication

Chargebee's Two Factor Authentication feature allows you to secure your Chargebee site with both a password and an additional code (valid once). It ensures that only authenticated users can access the site, keeping your sensitive payment and sales information safe, and affording you greater peace of mind.

Setting up Two Factor Authentication on Chargebee

Two factor authentication is easy to set up and will keep your account safe from unwanted access, even if your password is compromised. To set it up, log into Chargebee and follow these steps

  1. Log in to your Chargebee user interface. On the bottom left corner, click Profile name > Manage Account/Edit profile > Two-factor authentication.

    image

  2. Click Enable.

  3. You are presented with a QR code to be scanned using the authenticator app on your mobile device.

  4. Enter the 6-digit code that appears in your authenticator app and click Submit. This connects your authenticator app with Chargebee.

  5. Having successfully set up 2FA, you can use the 6-digit code generated by your authenticator app the next time you log into Chargebee.

  6. You need to disable Single Sign-On to enable two-factor authentication. To disable SSO, click Profile name > Manage Account/Edit profile > Go to Security. Under Authentication > SSO > click Disable > Confirm.

    image

Note

You can disable the 2FA feature at any time by clicking the Disable option in the 2FA section on your Profile page. Once disabled, your account will be secured by your password alone. If you would like to enable 2FA once again, follow steps 1-5 again.

Recovery Codes

It might be that you don't have access to your mobile device/authenticator app. Chargebee's recovery codes will come in handy at times like these. Enter one of your recovery codes when you don't have access to your authenticator app and you'll be able to access your account.

To download your recovery codes, go to your Profile from the Navigation Bar click Username > Edit Profile. You can also generate new recovery codes anytime by selecting Generate New Codes on the Profile page Username > Edit Profile, and download the updated set.

image

Note

  • Each recovery code is valid once. You cannot use the same recovery code twice.

  • Recovery codes are available only when two-factor authentication (2FA) is enabled.

  • Recovery codes are available for download as a .TXT file.

Remember device for 30 days

It might be difficult to employ two factor authentication every time you are logging in to Chargebee, so the 2FA feature comes with a Remember me on this device for 30 days option. Enabling this option after you have setup two factor authentication means you won't have to use your authenticator app for the next 30 days. Added security, no extra hassle.

Reset Two Factor Authentication

This feature allows site admins to reset Two-Factor Authentication (2FA) for team members under specific conditions, preventing unauthorized 2FA resets.

Note

A 2FA reset is allowed only if the admin and the user are associated with the same company. This means all sites associated with the admin and user must share the same Chargebee's customer identifier(merchant ID).

Step 1: Request for resetting two-factor authentication

When a user logs in, a message is displayed indicating if the user is eligible for a 2FA reset by their site admins. This message provides clear guidance on the available options. Learn more.

Step 2: Reset two-factor authentication for a user

Only the Admin can perform the Reset action for a user by following these steps:

  1. Login to the Chargebee site.

  2. Navigate to the Settings > Team Members page. The admin can view users whose 2FA can be reset.

  3. Click the Reset 2FA option to reset the user's 2FA.

    image

Step 3: Notify user about the two-factor authentication reset via email

After the admin resets a user's 2FA, the user receives an email notification about the reset. The user needs to login to their Chargebee site to setup their 2FA again.

image

Enforce User Authentication Policy

If there are multiple people using your site, security might be a concern. To set up an authentication policy for all the users of your site, check out our users page .

FAQ

1. What happens if I lose my phone or don't have access to my mobile authenticator app?

If you lose your phone or otherwise don't have access to your mobile authenticator app, you can use Chargebee's recovery codes to log into your account. Remember to download your recovery codes after you finish setting 2FA up for your site. More on Recovery Codes here.

2. What happens if I don't have access to my mobile authenticator app or my recovery codes?

Your site admin can reset your 2FA by following these steps.

Why am I prompted to contact Chargebee Support for a 2FA reset?

When the Chargebee sites you belong to are associated with multiple companies (merchant IDs), you may be prompted to contact Chargebee Support for a 2FA reset.

Example 1: Alice is part of three Chargebee sites:

  • acme (belongs to company Acme)
  • acme-test (belongs to company Acme)
  • securepay-test (belongs to company SecurePay)

Since Alice is associated with sites from two different companies (Acme and SecurePay), her 2FA cannot be reset by an admin.

Example 2: Bob is part of three Chargebee sites:

  • acme (belongs to company Acme)
  • acme-test (belongs to company Acme)
  • acme-migration (belongs to company Acme)

Since all three sites belong to the same company (Acme), any admin of these sites can reset Bob's 2FA, provided the admin is also associated only with Acme's sites.

This restriction ensures security by preventing unauthorized 2FA resets across multiple companies.

Articles & FAQs

How to reset the 2 Factor Authentication on my Chargebee account?
My one-time password isn't working.
I got a new phone and have not been able to access my authenticator app. I am locked out of Chargebee. What do I do?

Was this article helpful?