Salsa is dedicated to improving security in response to cybercrime threats, providing something more secure than just password authentication. Two Factor Authentication (2FA) is a secure way to prove your identity when you log in. 2FA links a software app on your mobile device to an Engage user's account. Users generate a verification code on that app that is only good "at the moment" and expires after a short time. When users with 2FA log in, they enter their username and password, generate a verification code in their app, then type in the verification code in Engage to gain access to the account.
User 2FA Setup
If your organization requires users to enable 2FA, Engage will prompt users to set up 2FA when they log in.
Enable 2FA in a User Account
- Log in to Engage
- Click your name/organization at the top of the page.
- Select My Account.
- Access your account by entering your password.
- Scroll to the bottom of the page and click the button labeled Enable Two Factor Authentication.
- Confirm you want to add that by clicking OK.
You will see a wizard that walks you through each step to set it up.
Step 1: Download Authenticator App
Download and install an authenticator app from one of the three apps listed on this page. You do not need to install all three; just one. Other authenticator apps may work; Salsa recommends one of these (links go to the app's help documentation):
The QR code (the large barcode in the middle of the screen) is a shortcut to each app's web page. Scan that code with your phone's camera or QR Code reader app, and download that app from its website to your phone.
Apple App Store and Google Play Store buttons below each QR code link to a place to download that app for your Apple or Android phone.
After you download and install the app to your smartphone, click Next to move to Step 2 of the process.
Step 2: Register Salsa Engage in Your App
Engage generates another, different QR code for you; scan the QR code with your authenticator app to capture a unique code that represents a link to Salsa Engage. That QR code is the same as the manual code just below it. If necessary, you can type the code manually into your app. Follow the app instructions on how to do that.
Once the app successfully connects with Salsa, it will generate a 6-digit code. Enter that code into the section labeled Step 2: Verify Authentication Code to connect your device to Salsa Engage. That way, they sync together.
Click Next to continue.
Step 3: Save Your Recovery Code
If you lose access to your authenticator app, you can save a recovery code to use instead of entering a verification code. You should retain only one active backup code at a time. Use that recovery code to log in if you lose access or if you don't have access to the registered mobile device. If you save more than one recovery code, only the most recent code will work. Store your backup code someplace secure and easily located if you lose your device.
Download a text file with the recovery code or copy it for pasting into a text file. You may not continue until either you download the recovery file or copy the code. Once you do either action, click Next to continue.
Step 4: Success!
At this point your 2FA configuration is complete. An infographic shows the process for logging in to Engage from that point forward. Click Done to complete your setup.
Log In to Engage with 2FA Enabled
After completing your 2FA setup, log in to Engage with your typical User ID and password.
Using your authenticator app, find out your current Verification Code. Enter that code into your login screen. Then you're in!
Log in to Engage with 2FA from Salsa CRM
Users will need to set up 2FA if it is required for the organization. If they configure it for their Engage account, when they access Engage from Salsa CRM via Tools > Salsa Engage, they are prompted to enter their 2FA verification code.
NOTE: 2FA for Salsa CRM is in development and will be available in an upcoming release.
Require 2FA for Your Whole Organization Workflow
Campaign Managers with administrative rights can require all users to set up 2FA in order to log into their Engage account. Campaign Managers must enable 2FA for their own account first, log out, then log in again before authorizing for the whole organization.
To authorize 2FA for the whole organization...
- Select the Settings button in the top right corner.
- Select the Manage Your Team tab.
- Change the Require Two Factor Authentication slider to Enabled. NOTE: If you do not have 2FA already enabled for your account, you will not be able to slide the slider to Enabled.
- Once you require 2FA for your organization, all users will immediately be required to set up 2FA to continue working, as in Single User 2FA Workflow, above.