Protect your data in your Bitrix24 account with two-step authentication. This adds an extra layer of security to the login process:

1. Enter your login and password.
2. Enter a one-time code from an authentication app. The code is valid for a short time and can only be used once.

Enable two-step authentication for all employees (admin)

An administrator must enable two-step authentication for their own account first, then enforce it for others.

1. Open your personal profile.
2. Click the Security button > Enable.
3. Go to the account Settings.
4. Enable the Mandatory for all employees option in the Security tab > Two-factor authentication.
5. Set the time during which users have to enable two-factor authentication.
6. To ensure that employees are notified when someone tries to log in to their accounts, enable the Send authentication code to Notifications option. Save the settings.

Enable two-step authentication (employee)

1. Open your profile and click Security > Enable. Make sure the time on your phone and computer is the same.
2. Install the Bitrix24 OTP app from the App Store or Google Play. You can also use any app that supports time-based one-time passwords (TOTP).
3. Open the app and scan the QR code, or enter the data manually.
4. Enter the verification code and click Done.

After setup, you will enter your login, password, and a one-time code each time you sign in.

Recovery codes

Recovery codes let you access your account if you can’t use your authentication app—for example, if your phone is lost or out of battery.

1. After enabling two-step authentication, open your profile.
2. Click Security > Recovery Codes.
3. Save the codes or print them. Each code can be used once.
4. If you change your phone, reinstall and set up the app again. Go to Security > My mobile device has changed.

Configure two-factor authentication on a new phone