Skip to main content

Two-Factor Authentication - 12/2024

LetĂ­cia Bastos
Updated

🎯 Purpose

This article explains how two-factor authentication (2FA) works in netLex Sign, a feature that adds an extra layer of security when accessing documents. You will learn how to set up and use this feature, as well as understand the benefits of keeping it as a standard in your signatures.

The article includes the sections:

  • What is two-factor authentication?

  • How to set up and use 2FA?

  • Frequently asked questions

🔄 What is two-factor authentication?

2FA is a security measure that protects document access by requiring an additional verification code, sent via email (or WhatsApp when available). This extra layer ensures that, even if the document link is compromised, only signers can access it.

Key features:

  • Verification code: A 6-digit code sent to the signer.

  • Code resend: Available every 1 minute.

  • Link validity: The verification code is valid for up to 48 hours.

  • Visual customization: The email follows the client-defined colors.

In netLex environments, 2FA is enabled by default for signers. For customers using netLex Sign and wishing for the same behavior, simply go to Settings > Signature > Edit provider and select the option “Keep verification code as default authentication”.

 

⚙️ How to set up and use 2FA?

👉 Setting it as default:

  1. An admin user must go to:
    Settings > Signature > Edit provider.

  2. Select the option “Keep verification code as default authentication”.

👉 Setting up 2FA for a signature:

  1. When sending a document for signature, add a signer.

  2. If 2FA is enabled, you will see the “Code” tag next to the signer.

  3. If the tag is not visible, manually enable 2FA:
    Click on the three-dot menu > Configure recipient > Check the verification code option.

👉 Signing a document with 2FA:

  1. The signer will access the link and see a prompt to enter the verification code sent to the original channel (email or WhatsApp).

  2. After entering the code, simply click “Verify” to access the document.

  3. If needed, the code can be resent.

âť“ Frequently Asked Questions

  1. Do I need a token for each document?
    No. A valid token can be used to access other documents as long as it remains active.

  2. How long is the token valid?
    The verification code is valid for 48 hours.

  3. Can I change the authentication for a signer after the process starts?
    Yes. It’s possible to modify a signer’s authentication as long as they haven’t signed the document.

  4. Does 2FA work with all signature types, like ICP-Brasil?
    Yes, 2FA is compatible with all signature types. However, for qualified signatures like ICP-Brasil, it’s less necessary since they already have advanced security measures.

With two-factor authentication, you add more security to the signing process, protecting documents and enhancing the reliability of netLex Sign. đź”’

Related articles

Comments

0 comments

Please sign in to leave a comment.