Two factor authentication (2FA) is a second level of authentication in addition to your password. You will need to authenticate your access each time you access the Profile tab in your portal, as this contains payroll information like bank details, tax details and superannuation information.
You can still access other information in your portal (eg timesheets and expenses) without needing to authenticate.
Setting up 2FA
When you log into your portal, you will be prompted to set up 2FA if you haven’t already done so.
Clicking on ‘Set up 2FA Now’ will; present you with the methods that you can choose to set up 2FA.
- ‘Authentication using mobile app’ will appear for all portals.
- ‘Authentication using SMS’ will only appear in portals which have SMS communications turned on.
If SMS communications are not turned on, you will only see the ‘Authentication using mobile app’ option and will need to use this to set up your 2FA.
Setting Up Authentication Using a Mobile App
Before you start setting up 2FA with a mobile app, you will need to download a supported app onto your smartphone or device. Astute currently supports the Google Authenticator and Twilio Authy apps, which are available in the App Store (iOS) and Google Play store (Android).
When ‘Authentication using mobile app’ is selected, you will be taken to a screen with a QR code and Secret key.
To link the app with your Astute portal:
Scan the QR code on the setup screen or manually type in the Secret key in the app.
Enter the six-digit code from the authenticator app to verify the link.
- Click Next.
The code in the app will expire and change regularly, so it’s important to ensure that you are entering the currently displayed code into Astute. An invalid code will be flagged on-screen.
Once you have entered the authentication code, you will need to set up a backup email address.
Setting up Authentication Using SMS
If you select SMS as your authentication method, follow the below steps:
Enter your mobile number in the fields provided.
Enter the verification code from the SMS sent to your registered number in Astute.
International mobile numbers are not supported for 2FA registration. If you do not have an Australian mobile number, you will need to restart the 2FA setup process and select the authenticator app method instead.
Once you have entered the verification code in Astute, you will be prompted to set up a backup email address.
Registering a Backup Email Address for 2FA
The backup email address for 2FA is used when you can't access it using your usual authentication method.
To set up a backup email address:
Enter your preferred email address and click Next.
If the email address is valid, you will be sent a verification code to the nominated email address. Enter this code into the on-screen field and click Next.
- If the verification code is valid, your 2FA setup will be complete and the backup email will be registered. Click Next to access your Dashboard.