Two-factor authentication (2FA) adds an extra layer of protection to your account, significantly reducing the risk of unauthorized access. Protecting your Moss account is critical, as unauthorized access could cause serious financial and operational consequences for your business. 2FA is required whenever you log in, authorize payments, or perform other sensitive actions.
Moss offers three 2FA options: the Moss mobile app, SMS-based 2FA, and third-party authenticator apps.
We strongly recommend using the Moss mobile app for 2FA: The Moss mobile app is the most secure 2FA method and the only way to access all platform features, letting you approve or reject authentication requests for logins, payments, and other sensitive actions.
We do not recommend using the alternative 2FA methods, as they provide lower security and limit access to certain Moss platform features.
SMS-Based 2FA: SMS-based 2FA involves receiving a one-time authentication code on your phone.
Authenticator Apps: Authenticator apps, such as Google Authenticator, provide a time-based one-time passwords (TOTP).
Moss does not support email-based codes or phone calls as methods for 2FA.
This article covers:
Who can add a 2FA method?
Each user can manage their preferred 2FA method in their profile settings. Once the Moss mobile app is set up, all authentication requests will be sent there. To switch to SMS 2FA or an authenticator app, you must first unpair the Moss mobile app.
It is not possible to enforce a specific 2FA method for all users in your company account, nor can you manage or change the 2FA method of another user.
How can I add a 2FA method?
The most secure 2FA method is the Moss mobile app. To set it up:
Download the Moss mobile app from the Apple App Store or Google Play Store.
Log in with your Moss username and password.
Follow the guided pairing process.
Note: Once the Moss mobile app is paired with your account, all authentication requests will be sent there. To switch to another 2FA method, you must first unpair the mobile app.
Adding 2FA through an authenticator app
Note: This option is only available if you have not paired the Moss mobile app with your account.
To set up an authenticator app for 2FA:
Login to Moss
Hover over your name in the left bottom corner
Open your Profile > Preferences > "+Add authenticator app"
Scan the barcode with an Authenticator App and enter the code for validation that is being shown in the app.
2FA is now configured.
For more detailed instructions, check out this article.
Adding SMS-based 2FA
When you first create your Moss account, SMS-based 2FA is set as the default. We strongly recommend immediately pairing your account with the Moss mobile app, as it is the most secure 2FA method.
How can I manage my default 2FA method?
Login to Moss
Hover over your name in the left bottom corner
Open your Profile > Preferences
Select one of the 2FA methods and set as default.
The selected method then shows as Default.
Note: Once your Moss account is paired with the Moss mobile app, it becomes your default 2FA method. To switch back to SMS or an authenticator app, you must first unpair the mobile app.
If you have not set up the Moss mobile app, you can log in using any 2FA method you have configured, regardless of which one is set as default.
Conclusion
Understanding Moss's 2FA methods and limitations helps in securing your account better. The Moss mobile app is the most secure 2FA method and the only way to access all platform features. SMS-based or authenticator app codes may be functional but less secure. For any issues with 2FA, contact Moss’s customer support for assistance.