Two-step Authentication in QMetry

Two-step Authentication

Two-step Authentication is a simple best practice that adds an extra layer of protection on top of your user name and password.

With two-step authentication:

  • The system prompts username and password.

  • And an authentication code

You can enable two-step authentication for individual users. There is no additional cost for enabling users with two-step authentication.

  • Any users having QMetry authentication type can be enabled.

  • Users authenticated via LDAP/SAML cannot enable two-step authentication.

Two-step Authentication Workflow

  1. You can enable two-step verification in your account.

  2. While logging in enter the authentication code along with QMetry credentials.

Enable Two-step Authentication

Note

You do not need create or update permissions for user module to enable or disable two-step verification.

Two-step authentication requires an authentication app on your smartphone. You can install the app from your phone’s app store. The table below lists some apps for different smartphone types.

Android

Google Authenticator, Microsoft Authenticator or others

iPhone

Google Authenticator, Microsoft Authenticator or others

After downloading the application, follow the below steps.

  1. Login to QMetry.

  2. Go to Customizations and select Users.

  3. Filter by user and click Edit.

    Edit

  4. Go to Security tab, select Two-step Verification and click Enable.

    EnaleTwoStepVerification.png

  5. Scan the QR Code, and enter the verification codes to enable the two-step verification.

    Note

    Once the user registers for Two-step Verification device, eight Recovery Codes are generated and displayed on the screen. Each code can be used only once. Users can download the codes in .txt file to use them in case they lose the device to generate the recovery code.

Once the two-step authentication is enabled, the system prompts you to enter a two-step verification code.

Filter Users with Two-step Verification

You can filter users based on the two-step verification set up status using the 2FA filter selected as Enabled or Disabled.

QPro_TwoStepAuth_Filter

Disable Two-step Authentication

If a user loses the authentication device or app, or wants to disable two-step authentication, follow the steps below.

To disable two-step authentication, perform these steps:

  1. Login to QMetry.

  2. Go to Customization and select Users.

  3. Filter by your user and click Edit.

  4. Go to Security and select Two-step Verification. Click the toggle to Disable.

  5. Click Remove

    QPro_TWA_Remove

Resync Verification details for Two-step Authentication

  1. Login to QMetry with your credentials.

  2. Go to Customization and select Users.

  3. Filter by user and click Edit.

  4. Go to Security tab and select Two-step Verification.

  5. Click the toggle to show remove or resync options.

  6. Click Resync and enter verification codes from the authentication app on your phone to complete the resync.

    QPro_TSA_Resync

Generate Recovery Codes for Two-step Verification

With two-step verification enabled, you can use recovery codes to access your account. After you register a device, the system generates eight recovery codes and shows them on the screen.

You can use a code only once. You can download the codes in .txt file.

Note

If you lose the device or cannot access authentication codes, you can use these recovery codes to log in. We recommend storing them safely.

To generate new recovery codes, you must re-register the device.

Other users can also see these recovery codes. If a user does not have their recovery codes, they can ask users with access to the Users module to find and share them.

In case, you have used all eight recovery codes and lose your device, you cannot log into QMetry without having their two-step verification device removed and set up again.

QPro_TSA_GenerateRecoveryCode

Using Recovery Code:

Click Login with Recovery Code on the QMetry Login screen. Enter the recovery code.

Make Two-step Verification Mandatory for All Users in QMetry

Permissions Required :

  • An “admin” user can make the Two-step Verification mandatory for all the QMetry authenticated users on the instance.

  • For SaaS instances, the first user (super-admin) who registered for QMetry, can make the Two-step Verification mandatory for all the authenticated users on the instance.

    Note

    The admin can make the Two-step Verification mandatory for other users only when the Two-step Verification is already enabled for their admin account.

To make two-step authentication mandatory for all users, perform these steps:

  1. Go to Customization and select General Settings & Audit.

  2. Find the Two-step authentication section at the bottom of the screen.

  3. Enable the Mandatory Two-step Authentication option to impose the two-step verification for all the users of the instance.

    2 step authentication

When enabling Mandatory Two-Step Verification, a warning popup shows affected active users. Clicking Users opens the list of QMetry users with 2FA disabled.

The admin can review users who have not enabled Two-Step Verification and then proceed to enforce it for all users.

QPro_TSA_Confirm
In this section:
© 2026
Publication date: