Account Security

Synerise provides several ways of account protection. One of them is setting a password. Within the account protection measures, users can define password policy and change their passwords in accordance with this policy.

You can also secure your account with two-factor authentication (2FA). If you have access to any workspace that enforces 2FA, you must configure it to be able to log on.

Changing password

1. Go to Settings > Account Security.
2. In the Current password field, enter a password you used so far.
3. In the New password field, enter a password that meets the requirements listed under the fields.
   Important: These requirements are sourced from the Password policy section. If a user belongs to more than one workspace, the system selects here the strongest password policy among the workspaces a user is assigned to.
4. In the Confirm password field, enter the new password.
5. Confirm the change of the password by clicking Save.

Enabling 2FA

When 2FA is enabled on your account, you must provide an authentication code from a mobile app in addition to your login and password when logging on.

1. Download any Time-Based One Time Password (TOTP) authentication mobile app to your smartphone.
   
   Tip:

   Example applications: Microsoft Authenticator, Google Authenticator.

   • If you’re not sure which authenticator app you should use, consult the security department in your company.
   • Make sure that the date and time in your phone are correct. They should be fetched from a time server.
2. Go to Settings > Account Security.
3. In the Two-factor authentication section, click Show. Result: A QR code and a text code are displayed.
4. Scan the QR code with the authenticator app or enter the code into the app manually.
5. Click Next step.
6. In the mobile application, locate the account you added in step 4.
7. Enter the 6-digit code from the application into the 6-digit code field.
8. WARNING:

   After completing this step, you will be logged out of all devices.
   A recovery code will be displayed. You must save that code in a safe place. The code will never be displayed again and cannot be recovered after you close the page.

   

   Click Finish verification.
   Result: A recovery code is displayed.
9. IMMEDIATELY copy the code into a safe location.
10. Click Done or close the page.
    Result:
    • When logging in, you must provide the 6-digit code from the application (the code is not required again for 8 hours on the same device). This is in addition to the password.
    • The recovery code can be used to:
      • Recover your account if you lose access to the authenticator app.
      • Disable 2FA on your account.

Disabling 2FA

1. Go to Settings > Account Security.
2. In the Two-factor authentication section, click Show.
3. In the field that opens, enter the recovery code (without spaces).
4. Click Disable.
5. WARNING: After completing this step, you will be logged out of all devices!
   Confirm by clicking Yes.

First login with 2FA enforced by workspace settings

If 2FA is required by any of the workspaces you belong to, you will be asked to configure 2FA the first time you try to access that workspace.

1. Download any Time-Based One Time Password (TOTP) authentication mobile app to your smartphone.
   
   Tip:

   Example applications: Microsoft Authenticator, Google Authenticator.

   • If you’re not sure which authenticator app you should use, consult the security department in your company.
   • Make sure that the date and time in your phone are correct. They should be fetched from a time server.
2. Log in to your Synerise account.
3. Select the workspace which requires 2FA.
   Such workspaces are marked with a key icon and an Access restricted label when you hover over them.
   Result: A pop-up opens, asking to enable 2FA.
4. Click Enable 2FA.
   Result:
   You are redirected to your account security settings page.
5. Follow the instructions in “Enabling 2FA”, starting at step 3.