All Collections
Getting started and general use
Staff and logins
Two factor authentication (2FA)
Two factor authentication (2FA)

How to enable 2FA for your account and manage 2FA for your business

Nick avatar
Written by Nick
Updated over a week ago

Protecting with 2FA

If your Tyro Health Online password is stolen, two factor authentication (2FA) protects your account by requiring a login attempt or password change to access another proof of identity - 2FA in Tyro Health Online relies on your password (one, something you know) and a code sent to your phone (two, something you have).

According to the Australian Cyber Security Centre “Multi-factor authentication (MFA) is one of the most effective ways to protect your valuable information and accounts against unauthorised access.”

How to manage 2FA for your account

  1. Navigate to your account by clicking your login email in the top right of your screen.

  2. Below your login email and password, you can toggle your 2FA setting to either:

    1. 'Enable' 2FA - you'll then be prompted to enter the mobile number you will use to receive verification codes via SMS.

    2. 'Disable' 2FA - the mobile number used will be deleted, if 2FA is subsequently enabled again, you'll be required to enter a mobile number.

  3. When 2FA is enabled, you can change the mobile number used from your account settings - select 'change mobile number' under the toggle to enable/disable 2FA.

When 2FA is enabled, you’ll be required to enter a verification code - sent via SMS to your mobile number - every 30 days when logging into Tyro Health Online. Verification codes are also required when you attempt to change your password or the mobile number used for 2FA.

Note, if 2FA is set as mandatory by a business your account is associated with, you won’t be able to disable 2FA - you may notice this if you are asked for a mobile number when logging into Tyro Health Online.

Set 2FA as mandatory for all accounts associated with your business

As an admin, you can control whether 2FA is mandatory (enabled) for all accounts associated with your business - login won't be possible unless a mobile number is entered and the verification code process successfully completed:

  1. Navigate to the ‘business settings’ tab from the sidebar.

  2. Select the ‘security’ tab to toggle the 2FA setting for your business to ‘enabled’.

When 2FA is set as mandatory (enabled) for your business, associated accounts cannot disable 2FA for their individual accounts unless you 'disable' 2FA for your business (meaning it's no longer mandatory).

If 2FA is enabled for your business, then existing accounts associated with your business will be prompted for a mobile number when they next login and any new accounts created will be asked for a mobile number when entering their details before their first login.

Note, if you disable 2FA for your business, any associated accounts with 2FA will remain enabled until changed by the individual.

If you have any questions, click on the pink chat bubble on our website or email our Customer Support team.

Did this answer your question?