Two-factor authentication is a security measure designed to protect administrators and users.
Two-factor authentication is not enabled by default; it is the responsibility of the account administrator to enable it for all user accounts, or for users to enable it for their own account if the initiative has not been taken by the administrator.
The mechanism is simple:
1. For each login attempt, an additional login interface is displayed.
2. On this interface, entering a code is required
3. An email is sent to the user attempting to log in, containing the code.
4. Entering this code grants access to the user area under normal usage and browsing conditions.
Good to know:
Two-factor authentication is not enabled by default.
The administrator of an account can enable two-factor authentication for all users.
Users may decide to enable two-factor authentication independently of the account administrator’s decision, but they cannot disable it if the administrator enforces it.
If the administrator of an account decides to disable two-factor authentication for all users, users who wish to keep their setting active must enable it manually.