Help Center
Go back to application
Help Center
Go back to application
Platform Terms GlossaryContacting Support and Reporting Bugs
Task Management
Task Management explained Creating Tasks Setting up Task NotificationsGiving permissions to team members
Organization
Working together in KertosInviting UsersCreating rolesAssigning System AccessCreating Departments and Assigning Users
Integrations
Discovery
Tasks
Device Management
Human Resource Information Systems
Inventory
Inventorization of vendorsInventorization of systemsInventorization of assetsEU AI Act: Inventorization of AI use cases
Risks
Managing risks
Trust Center
Setting up your trust center
Incidents
Reporting incidents
KAIA
KAIA explainedPrinciples of AI at Kertos
Interacting with KAIA
Compliance
Frameworks explainedManaging & implementing controlsCreating & managing policiesCompleting & assigning trainingsGuidanceDetermining Control Applicability
Privacy Management
Creating a RoPACreating TOMsCreating DPIAs
Data Subject Requests
API Reference
Ingress API Docs for DSRs Webhook API Docs for DSRs
Auto Checks
Auto Checks explainedAuto Checks: AWS Auto Checks: AzureAuto Checks: GCPAuto Checks: GitHubEnabling Auto Checks by Reconfiguring the Azure IntegrationEnabling Auto Checks by Reconfiguring the GCP IntegrationEnabling Auto Checks by Reconfiguring the AWS Integration
AWS Auto Checks Detailed Explanations
Azure Auto Checks Detailed Explanations
GitHub Auto Checks Detailed Explanations
Login and authentication
2FA Login

2FA Login

Make sign‑in safer for your organization by adding a second check at login. With MFA, users confirm their identity using a time-based one‑time code from an authenticator app in addition to their email and password.

Why it’s valuable for you

  • Stronger security: Even if a password is leaked, accounts remain protected.
  • Meets compliance needs: Helps satisfy standards like NIS2, ISO27001 etc. by using multi‑factor authentication.
  • Low friction: Works with common authenticator apps and takes seconds to set up.

How to set it up

You can enable MFA during login or from Settings later. We recommend completing setup the first time you’re prompted.

  1. First-time setup during login
  • Go to the Kertos login page and sign in with your email and password.
  • When prompted, select Set up 2FA.
  • An MFA setup page appears with:
    • A QR code to scan with your authenticator app
    • A manual setup code as an alternative
  • In your authenticator app, add a new account and either:
    • Scan the QR code, or
    • Enter the manual setup code shown on screen
  • Enter the 6‑digit code generated by your app and confirm.
  • Save your recovery key:
    • Copy or download the recovery key and store it in a secure place.
    • Download is available as a .txt file. You may be asked to enter your password to download.
  • Select Continue to finish. MFA is now active for your account.
  1. Set up later from Settings
  • Sign in to Kertos.
  • Go to Settings → Authentication.
  • Follow the on‑screen steps to scan the QR code or enter the manual code, then confirm with a 6‑digit code.
  • Save your recovery key by copying or downloading it.

Notes

  • If you skip MFA, you’ll be prompted again the next time you log in.
  • After a grace period, MFA can be enforced so all users must complete setup.

Using a recovery key

  • If you don’t have access to your authenticator app, choose Login using backup code on the MFA prompt.
  • Enter your saved recovery key to complete sign‑in.
  • For security, keep your recovery key in a secure password manager or vault.

How to remove or reset MFA

If you still have your device

  • Sign in to Kertos.
  • Go to Settings → Authentication.
  • Select Remove 2FA.
  • Confirm the removal when prompted. You’ll be signed out and returned to the login page.
  • You can set up MFA again on your next login.

If you lost your device and do not have the recovery key

  • On the MFA prompt, select Login using backup code. If you don’t have it, follow the link to the Help Center from the prompt.
  • Contact Support from that article so we can verify your identity and help you regain access.
  • After access is restored, set up MFA again and save your new recovery key

 

I don't have my recovery code

If you don’t have access to your recovery code, no problem. Just get in touch with us via support@kertos.io

Please note that after a 2FA reset, withdrawals are restricted for 48 hours for safety reasons. If you reset your 2FA with the recovery code, this restriction won't apply.

Was this article helpful?

Powered by Product Fruits