All articles

2-Step Verification

2-step verification is available for all license types on Wrike Enterprise accounts.

⏱ 5 min read

Overview

2-step verification (also called two-factor authentication or 2fa) provides an extra layer of security to the sign in process: it requires you to enter a time sensitive verification code after you enter your username and password.

When you enter the security code, you have the option to “Remember this computer”. Choose this option to bypass the second authentication step for the next 30 days when accessing Wrike from that particular computer. If you choose this option, please be sure to lock your computer when you walk away from it.

2-step verification can be enabled for specific users or for all users who are part of the same account.

Important Information

  • If you have 2-step verification enabled, you can use one-time passwords to log in to applications which do not natively support 2-step verification. Note: In Enterprise accounts with 2-step verification, one-time password usage may be disabled. If you need to use a one-time password, contact your account administrator or owner to enable this option.
  • Wrike does not support verification codes that are delivered via text message. 
  • Recovery codes are only valid once. Each time you reconfigure or reset 2-step verification settings, a new recovery code is generated.
  • If you use Google Auth (or another SSO provider) to log in to Wrike, then 2-step authentication is handled through them. G Suite customers can easily enable 2-step verification with Google.
  • You can read about the advanced practices we employ in our Security overview.

Authentication Apps

To use 2-step verification you must have an authentication app, on your mobile phone or tablet, which can generate time-based, one-time passwords. 2-step verification can be configured to work with applications that use Time-Based, One-Time Password Algorithm (TOTP) for generating access codes from a shared secret key.

Please note, authenticator apps generate valid codes even when your device has no phone or data connectivity.

We recommend different authentication apps, depending on the type of phone you use: 

Potential additional services include: 1PasswordAuthyDuo MobileYubikey with TOTP.

Enable 2-Step Verification (for a user license)

  1. Download an authentication app on your mobile phone or tablet.
  2. From the Wrike Workspace, click on your profile image in the upper right-hand corner of the Workspace.
  3. Select “Settings” from the dropdown.
  4. "Profile" opens by default.
  5. Scroll to “Password & 2-Step Verification” section.
  6. Click “Enable”.
  7. Follow the prompts generated by the configuration wizard. You will be asked to enter your Wrike password and confirm that your preferred authenticator app is installed on your mobile device.
  8. Enter a 6-digit verification code generated by your authenticator app and click “Verify”.
  9. Wrike will provide a recovery code. Please make sure to keep this code, it's only shown once, and you will need it if you ever need to disable 2-step verification and access your account.

Enable 2-Step Verification (for all users on a subscription)

This action must be done by an account admin. Please note, if 2-step verification is turned on for the whole account, then individual users aren't able to disable 2-step verification for their user license, an admin must do it for them.

Before enabling 2-step verification for all users on the account, we recommend you:

  1. Instruct team members to enable 2-step verification on their personal profiles first.
  2. Confirm that everyone has enabled 2-step verification (you can check progress from the “2-step verification” section of the Security tab on Account Management).

Once everyone has enabled 2-step verification for their user license, turn on 2-step verification for all users who are part of the account:

  1. Click on your profile image in the Workspace's upper right-hand corner.
  2. Select "Settings" from the dropdown.
  3. Click "Security" in the left panel.
  4. Locate the section on Two-step verification.
  5. Select the radio button next to “Obligatory for all users”.
  6. Click “Save changes”.
  7. Click “Confirm”.

Users who haven’t enabled 2-step verification will be logged out of Wrike and will have to configure 2-step verification as soon as 2fa is enabled for the whole account.

Once 2-step verification is turned on for everyone, all current account members will receive an email about it. New members who join the account will be prompted to configure 2-step verification when they confirm their invitations.

Reconfigure 2-Step Verification

If you would like to use 2-step verification with a different mobile device, you can reconfigure your settings. We recommend installing an authenticator app on your new phone before reconfiguring your 2-step verification settings.

  1. Click your profile image in the Workspace's upper right-hand corner.
  2. Select "Settings" from the dropdown.
  3. "Profile" opens by default.
  4. Click “Reconfigure” under the heading “Two Step verification”.
  5. Click “Reconfigure” on the pop-up which appears.
  6. Enter your password and press “Continue”.
  7. Follow the setup wizard’s prompts to reconfigure your settings.

If you have two-step verification enabled, but no longer have access to your phone, you can:

  • Click the “Lost your mobile device?” link on the Wrike login page. You will be prompted to enter the recovery code which was generated when you were enabling 2-step verification for your account. If you do not remember your recovery code you can click "Can't provide a code" and a message will be sent to your account administrator informing them that you have been locked out of your account. 
  • Contact one of your account admins so that they can temporarily disable 2-step verification for you. You can then login and reconfigure your 2-step verification settings.

Disable 2-Step Verification for a User's License

If 2-step verification has been turned on for all users on a subscription, then a user cannot turn off 2-step verification for their user account, but an admin can do it for them. 

  1. Click on your profile image in the upper right-hand corner of the Workspace.
  2. Select "Settings" from the dropdown.
  3. Click "Users" in the left panel.
  4. Select the user who you need to disable 2-step verification for.
  5. Click the “Off” option to the right of the “2-step verification” heading.

Please note, if 2-step verification is turned on for the account, then disabling 2-step verification is temporary and the user will be asked to enable the security feature when they sign in to their Workspace.

0 comments

Article is closed for comments.

Top