As of today, all users will be able to activate multi-factor authentication from the options menu. This feature represents the next step in our commitment to make Workflowy secure for all our users. We hope this option will give users peace of mind about keeping sensitive data inside Workflowy.
And for users that wanted to use Workflowy in corporate environments but were held back due to security requirements, we hope this will make it easier for you to incorporate Workflowy into your professional life.
What is MFA?
MFA stands for multi-factor authentication.
Multi-factor authentication is when a user must provide two or more pieces of evidence to verify their identity to gain access to an app or digital resource.
So if a hacker gains access to your login ID and password, they still can’t login without the second authentication method.
Simply put, MFA makes your WorkFlowy data more secure!
How does MFA work?
Your phone is the most common method for a second authentication method.
You typically install an Authenticator app, which allows you to setup and manage multiple MFA login accounts.
Then when you login to an account, the app generates a temporary code that you enter into the MFA login form after you have entered your password.
How do I set up MFA in Workflowy?
Here’s a short video that walks you through the set up process.
If you prefer written instructions, they’re available here.
why through another app (for example authy)? github just sends an sms with a code. why the extra step?
(I commented on the post about Beta MFA, but it might make more sense here.)
Unless I missed it, the Settings interface doesn’t say *which* Authenticator app we had set up for it. I had to thrash through several to figure it out. Could this be added (without compromising security)?
Do you support MFA with Yubikey?
what about shared nodes? Will users with shared access have to authenticate, too?
This is great to have, but I’d love if we had an option where the currently-emailed codes could be texted to us. Access to my phone would = access to my Workflowy without having to bring another app into the mix. Regardless, glad to have MFA at all! Thanks Workflowy!
No support for the default Google Authenticator???
It works with any TOTP authenticator app. You just need to scan the QR.
Thank you! For a couple years I’ve been saying I’d go back to Pro as soon as MFA was available and now it’s done! Feels good to be Pro again. 💗
Done! Easy & quick. Thanks 🙂