Security is essential. With Two-Factor Authentication (2FA), IDpack adds an extra layer of protection to your account using a simple and proven method: authenticator apps.

2FA is available at no additional cost for IDpack Business, IDpack Professional, and IDpack Enterprise plans, and it is quick to set up.

What is an authenticator app?

An authenticator app is a mobile application that generates secure, time-based verification codes used during login.

Popular options include:

• Microsoft Authenticator
• Google Authenticator
• Any compatible authenticator app

These apps generate a 6-digit code that changes every 30 seconds. This code is synchronized with IDpack and confirms that the person signing in is really you, even if your password is compromised.

In simple terms:

• Password – something you know
• Authenticator app – something you have

This combination significantly improves account security.

Step 1 – Install an authenticator app

If you do not already have one, install an authenticator app on your mobile device.

• Microsoft Authenticator
• Google Authenticator
• Or any compatible app

Once installed, you are ready to enable 2FA in IDpack.

Step 2 – Enable 2FA in IDpack

To activate 2FA for a user:

1. Go to the User Manager module.
2. Select a user.
3. Locate Require Two-Factor Authentication (2FA).
4. Change it from Disabled to Enabled.
5. Save the user.

The next login will handle the setup.

Step 3 – First login setup

The next time the user signs in:

1. A QR code is displayed.
2. Open the authenticator app on the phone.
3. Scan the QR code, or enter the manual key.
4. Enter the 6-digit code generated by the app.

Once verified, the account is linked to the authenticator app.

What happens at every login?

Each time the user signs in:

• Enter the password.
• Enter the 6-digit code from the authenticator app.

The code refreshes every 30 seconds, making unauthorized access significantly more difficult.

Important: Never share your authentication code with anyone. No employee from IDpack or Aptika will ever ask for this code.

Lost access to your device?

If a user loses access to their authenticator app, an administrator can reset 2FA by disabling it and enabling it again. A new setup will be required at the next login.

Best practice: Always have a backup administrator

We strongly recommend having at least two administrator accounts.

If one administrator is locked out, another can restore access. If a sole administrator loses access, IDpack support must be contacted.

Final thoughts

2FA is one of the simplest and most effective ways to secure your account. It takes only a few minutes to set up and provides a significant improvement in protection.

If you have not enabled it yet, now is the time.