Setting up MFA

Multi-factor authentication (MFA) adds a second check when you sign in: a short code from an app on your phone, in addition to your password. If your password is ever guessed or leaked, MFA keeps your account safe.

Whether MFA is required is decided by your administrator. If it’s enabled for your account, you’ll be asked for a code every time you sign in.

What you need

An authenticator app on your phone, such as:

• Google Authenticator
• Microsoft Authenticator
• 1Password, Authy, or any TOTP-compatible app

These apps generate a new 6-digit code every 30 seconds.

Set it up

1. When MFA is enabled for your account, you’ll be shown a QR code during setup.
2. Open your authenticator app and choose Add account → Scan QR code.
3. Scan the code. Your app adds an “Zahen” entry that shows a rotating 6-digit code.
4. Enter the current code to confirm, and you’re done.

Screenshot

MFA setup with QR code — added in a later docs update.

Signing in with MFA

After it’s set up, signing in has one extra step: enter the current 6-digit code from your authenticator app when prompted.

Tip

Codes change every 30 seconds. If a code is rejected, wait for the next one and try again — and check that your phone’s clock is set to update automatically.

Lost your phone?

If you can no longer get codes, contact your administrator. They can help you recover access and set MFA up again on a new device.