diff options
| author | Matthew Somerville <matthew@mysociety.org> | 2020-05-06 16:52:40 +0100 |
|---|---|---|
| committer | Struan Donald <struan@exo.org.uk> | 2020-05-12 17:11:52 +0100 |
| commit | 97e52222eccc441e4fcb2a444d04eb411c3a1eee (patch) | |
| tree | e31b88350f20208675e3ce91085c50de5a32862e /docs | |
| parent | 8898170c9ac6127329a1f17d855dae8ea7472f86 (diff) | |
[Docs] Add info about two-factor auth.
Diffstat (limited to 'docs')
| -rw-r--r-- | docs/_includes/admin-tasks-content.md | 11 | ||||
| -rw-r--r-- | docs/pro-manual/staff-user-accounts.md | 11 |
2 files changed, 22 insertions, 0 deletions
diff --git a/docs/_includes/admin-tasks-content.md b/docs/_includes/admin-tasks-content.md index 16329e7e8..98a2780bc 100644 --- a/docs/_includes/admin-tasks-content.md +++ b/docs/_includes/admin-tasks-content.md @@ -522,6 +522,17 @@ staff user only deals with reports of a specific type. To remove an account, the Administrator-level member of staff should make contact with mySociety. +#### Two-factor authentication + +Any staff user can choose to set up two-factor authentication on their account. +To do this, they will need an app on their phone that can generate time-based +authentication keys, such as Google Authenticator or a password manager. Then. +they can visit their account page on the site and select ‘Activate two-factor +authentication’ to receive a QR code to scan with the app. + +If you wish your organisation to have mandated two-factor authentication, +please get in touch. + </div> <div class="admin-task" markdown="1" id="creating-editing-categories"> diff --git a/docs/pro-manual/staff-user-accounts.md b/docs/pro-manual/staff-user-accounts.md index 37997ada2..3efa4f41f 100644 --- a/docs/pro-manual/staff-user-accounts.md +++ b/docs/pro-manual/staff-user-accounts.md @@ -35,6 +35,17 @@ Your password must contain 6 or more characters, and must not be one of the most used combinations (such as ‘Password’ or ‘123456’). Your council may also have password policies which you are expected to abide by. +### Two-factor authentication + +Any staff user can choose to set up two-factor authentication on their account. +To do this, they will need an app on their phone that can generate time-based +authentication keys, such as Google Authenticator or a password manager. Then. +they can visit their account page on the site and select ‘Activate two-factor +authentication’ to receive a QR code to scan with the app. + +If you wish your organisation to have mandated two-factor authentication, +please get in touch. + ### How to log out Click on ‘Your account’ in the top menu, then click ‘Sign out’. |