World class security measures for your employee information
On Monday July 22 2019, Ento will be introducing 2-Step Authentication during login for manager accounts.
For those unfamiliar with the term, it’s also referred to as Two Factor Authentication or Multi Factor Authentication. 2-Step Authentication provides an extra layer of security when logging into your Ento account – rather than relying on just a password for access, it also requires a code to login, sent via an Authentication app on the user’s smart phone. These two steps combined mean tighter control around who’s accessing accounts.
This will be available as an option for manager accounts—neither the employee area or time clock will require 2-Step Authentication to login.
For users of electronic tax file declaration
In line with the ATO’s requirements, all users of the electronic tax file submission add-on will need to have 2-Step Authentication switched on. (To check if you have this add-on installed, look for ‘TFNDeclaration’ under the Add-Ons page of your account.)
To ease the transition into using 2-Step Authentication, from Monday July 22 2019 until July 29th 2019, managers will be able to skip the setup and log straight in. On July 30 2019, managers will be required to setup 2-Step Authentication to login.
For all other accounts
All accounts not using the TFNDeclaration add-on will not have 2-Step Authentication turned on by default, but can enable it in Settings > Company Settings. You’re also able to switch on/off 2-Step Authentication as desired.
How managers will set up 2-Step Authentication
When 2-Step Authentication is first activated, managers will see a message advising them to set up 2-Step Authentication for their account:
Until Monday July 29th, there will be a ‘Skip for now’ link which will take you directly into Ento as usual.
Choosing to ‘Set up 2SA’ will lead to a page advising to download an authenticator app such as Google Authenticator or Authy for a phone or tablet. If you don’t have a smart device, Authy is also available for your Windows or MacOS computer.
To set up Ento in their authentication app, managers will need to scan the presented QR code in the app (usually under the ‘Add Account’ function of the app):
Once set up, the authentication app will provide a 6-digit code to enter into Ento to finalise setup & activate 2-Step Authentication.
Logging in with 2-Step Authentication
After entering a username & password as normal, managers will be asked to enter a time sensitive 6-digit authentication code which they can find in their Authenticator app:
Enter this in the authentication code field to be taken into Ento.
What if a manager loses their device?
In the instance that the linked device is lost, the Authenticator app linked on a manager’s account can be removed via their Manager profile (Core HR > People > Managers) by another manager with sufficient access. The manager will then need to link a new device during their next login.
If there are any questions or concerns at any point, please get in touch with our Support team & we’re happy to discuss & advise further.