Securing Your Account
Multi Factor Authentication (2FA)
Multi Factor Authentication (MFA) or 2FA, is an extra layer of security for your Click4Time account. In addition to entering a password to log in, you’ll also enter a unique code. This additional step helps ensure that you, and only you, can access your account.
After you enable this feature, to log in to your account, you will need your password, as well as a secondary authentication method, which may include a code generated using an Authentication app installed on your mobile device (e.g., Google Authenticator, Twilio Authy, Microsoft Authenticator, Duo Mobile etc.) or a code sent to your account email.
You can choose to activate both types of 2FA (Authenticator App and Email). If you do activate both, the more secure option, being the Authenticator App, will be the primary method offered when logging in. If you don’t have access to your device with the Authenticator App, you can choose Email as an alternate authentication method.
Authenticator App (Recommended)
An authenticator app is a software application, typically installed on a smartphone, that generates time-based one-time passcodes (TOTPs). The codes generated by the app are only valid for a short duration, making this method virtually impossible to cheat.
When logging in to your account, you will be asked for the code displayed in your Authenticator app after submitting your usual login credentials.
Note – You will first need to download and install an Authenticator App such as Google Authenticator, Twilio Authy, Microsoft Authenticator, Duo Mobile etc. You can search for “Authenticator” from your device’s App Store.
When you log in to Click4Time, we will send an authentication code to the email associated with your account. You will use the unique code to complete the login process.
To setup 2FA, you will need to log in to your Click4Time account at https://book.click4time.com and go to Account > Personal Information > Security – Account Login. Under the section Multi Factor Authentication (MFA), you can choose to activate one or all authentication methods by switching the toggle beside the type you want to activate. Note: When you activate any 2FA option, you will be logged out of your account on all devices you are currently logged in to.
Tip – We highly recommend using the Authenticator App option over Email because email can be hacked or spoofed (faked). With the Authenticator App option, someone would need to have your phone or device that the App is installed on to be able to log in to your account.
After activating the authentication option, you will be asked to enter your account password. Depending on which option you’re activating, the next steps will differ slightly.
Note: BEFORE you can activate the Authenticator App option, you will need to have an Authenticator App installed on your mobile device. You can search “Authenticator” in your device’s app store to find those apps. We recommend Google Authenticator, Authy, Microsoft Authenticator or Duo Mobile.
After submitting your password, you will continue to the QR code display. You will then open your Authenticator app to add Click4Time by scanning the QR code with your camera or manually entering the setup key.
Note: Each Authenticator app is unique in how you add sites to the app, but usually there is a + or “Add” option on the main screen.
Google Authenticator’s screen as an example.
After scanning the QR code, Click4Time will be added to your Authenticator App as “Click4Time – firstname.lastname@example.org”. You will then use the 6 digit code displayed for Click4Time in your Authenticator app to enter into the 2FA setup in your Click4Time account. You will then be logged out of your account. This will complete the Authenticator setup.
After switching the Email toggle ON, you will be asked for your account password. Next, we will send a unique code to the email associated with your account. That email address will be displayed in the setup process to ensure the code is sent to the right place.
Once you receive the code by email, you will enter it into the Verification Code screen. After submitted the code, you are now setup to receive a verification code by email when logging in to your account. Note: You will immediately be logged out of all Click4Time sessions on all devices after completing the activation process.
Important! The code is only valid for 10 minutes. If you haven’t received the code within 10 minutes, you can choose to Resend Code up to 5 times. After 5 attempts, you will be blocked from activating Email 2FA and should contact Click4Time Support to determine why those emails are not reaching your inbox.
Email delivery is out of our control and may take several minutes to arrive in your inbox. If none of the below address the email deliverability, you should contact Click4Time Support for further assistance.
- If your emails are taking longer than 2-3 minutes to arrive, start by refreshing your email inbox.
- Check your junk or spam folder and mark any emails from Click4Time (email@example.com) as ‘not spam’.
- Add firstname.lastname@example.org to your address book or trusted sender list.
- Star, flag, or mark your 2FA emails as important. This tells your mail provider that you DO want these messages.
- If you access your email through a mail program such as Outlook, Thunderbird, Apple Mail, or through your mobile device’s email app etc, and your email provider (Yahoo, Hotmail, Gmail, company email etc.) considered the email as junk, it will most likely not be loaded by your mail program. You will need to log in directly to your email provider through a web browser to check that spam folder and mark any Click4Time email as “Not Spam”. You can also add Click4Time’s sender email “email@example.com” as a contact so that your mail service knows to trust emails from this address.
There are many reasons you may not have access to your device that has your Authenticator App, maybe the battery is drained, your phone is misplaced or you have a new device. In any case, you will need either a Backup Code or to have setup an alternative authentication method such as email authentication.
Backup Code: Ideally you have saved the Backup Codes generated when you activated you 2FA method. If so, you can use one of these one-time use codes to login.
Just below the Authentication Code Submit button, there is a clickable link to use a backup code or alternative authentication method. After selecting the Backup Code option, enter one of your backup codes and submit. Be sure to mark that you have used the specific backup code so you know how many you have remaining and don’t try to use the same code twice.
Email Code: If you can’t find your Backup Codes and you did setup Email as a secondary authentication method, you can choose to have a code sent to your account email address.
Just below the Authentication Code Submit button, there is a clickable link to use a backup code or alternative authentication method. After selecting the option, choose “Send Code by Email”. Once you receive the emailed code, which is valid for up to 10 minutes, enter it into the “Email Verification Code” field.
To change the email linked to your 2FA, you will need access to your old email and your new email address. If you DON’T have access to your old email account or your Backup Codes, you will need to contact Click4Time Support for further assistance.
Since your account has Email 2FA enabled, a verification code will be emailed to your current email address to authenticate your login. If you don’t have access to your old email account, you won’t be able to receive those emails.
If you DO have access to both email accounts, you can continue with the process.
Log in to your account at https://book.click4time.com and go to ACCOUNT SETTINGS > Security Account Login and first disable your Email 2FA option.
Once your Email 2FA option is disabled, go to the Email Address section at the top of the page and enter your new email address as well as your account password, then click the Update Details button.
A verification email will be sent to your new email address to complete the change. Then log back in to your account settings to reactivate your Email 2FA method.