You can request customers to verify their devices through a Two-Factor Authentication (2FA) system.
This will help prevent customers from sharing their accounts with other users by requesting them to enter a verification code when signing in to their accounts.
Introduction
Two-Factor Authentication (2FA) is a very important security feature and is common among most mature internet companies at this point in time.
Not only do verification codes sent to email addresses help to prevent account sharing, but they're also very important to prevent your content from being stolen 🔐
Each time customers log in from an unrecognized device, we will ask them to verify the device they are logging in from.
Customers can avoid entering a verification code every time they login by trusting their device.
A verification code will be sent via the email connected to their Podia account.
They'll just need to enter the code upon login and click on Verify to log in to their customer account.
The verification code will be valid for 30 minutes.
Enabling Two-Factor Authentication (2FA)
By default, 2FA will be off for your account.
If you’re concerned about customers sharing accounts (or prefer your products to be as secure as possible) you can keep security verification on.
If your customers are struggling with verification, your product relies on sharing accounts, or you just don’t want people to go through an extra step, you can keep security verification off.
You can easily enable or disable it by following the steps outlined below:
In the sidebar menu, click on Settings.
Click on Edit next to Security verification.
Enable the "Verify customer email on login" checkbox.
Hit Save to save your changes.
And that's it! 2FA is enabled for your account, and a verification code will be required when customers try to log in to their accounts.
What if customers can't find their verification code?
If customers aren't able to find the code in your email, here are a couple of things you can try:
Search for [email protected]
This is where the verification codes will be sent from. If they search for this address they will be able to filter for the message and find the verification code more easily:
Search in Spam/Promotions/Other folders
Some email services might filter these emails and put them into different inboxes. Make sure they always check their Spam folder.
If they are using Gmail, they should check the Promotions tab, and if they are using Hotmail, they should check the Others folder.
Nothing in spam/trash?
This could be an issue with their email provider, or their email could be on a suppression list, which can happen if an email we send bounces.
Contact us for help and if this keeps happening we recommend changing their login email to something else.
Troubleshooting issues with verification codes
The verification code is invalid
Make sure your customers are using a single browser to log in.
Every code only works for the web browser you requested it on.
For example, if they request a code on a Safari browser, they cannot enter the same code in a new Firefox browser, or even a new tab in the Safari browser.
Your customers should enter the code on the same page they requested the code from; otherwise, a new code will be generated for each login attempt on the new tab or browser.
Delay in receiving verification codes
Verification codes expire after 30 minutes, and our code emails tend to send much quicker than that (1-3 minutes).
If codes are arriving very delayed, please wait a bit and try again, as it could be an intermittent issue that will self-resolve.
If no luck, check our status page, as any outages will be noted there. If there's nothing there, then it could be an issue with their email provider.
Can I disable 2FA for my creator account?
Not at this time. Due to the sensitive personal details located in these accounts, verification codes cannot be turned off for your creator account.
If you have any questions, don’t hesitate to reach out at [email protected] or click on the purple icon to send us a message!