Activate 2FA in SiteKiosk Online

How to Enable Two-Factor Authentication in a SiteKiosk Online Account

Two-factor authentication (2FA) adds an extra layer of security to your SiteKiosk Online account by requiring a verification code in addition to your password. The following steps apply to both cloud and on-premise SiteKiosk Online servers.

Note: If your organization uses an external authentication provider such as LDAP or Microsoft Entra ID, 2FA settings are managed through that provider, not directly within SiteKiosk Online.

Step 1: Log in to Your SiteKiosk Online Account

1. Go to your SiteKiosk Online web portal.
2. Log in using an administrator account that currently does not have two-factor authentication active.

Step 2: Open Team Settings

1. From the main dashboard, navigate to the Team menu.
2. Select the Settings tab at the top (if you are not already on it).

Step 3: Enable Two-Factor Authentication

1. Scroll down to the Miscellaneous section.
2. Locate the option labeled Enforce Two-Factor Authentication.
3. Check the box to enable it.
4. Click Save to apply your changes.

Once saved, 2FA becomes mandatory for all users in your team.

Step 4: Adjust User Roles (Optional)

• The Administrator role has the authority to toggle the two-factor authentication setting on or off.

• Regular users—such as those assigned the Projects User role—will not have access to modify security settings.

• You can also create a custom user role if you want to grant or restrict access to certain settings.

Step 5: Test the Login Process

1. Log out of your SiteKiosk Online account.
2. Log back in with your username and password.
3. You will now be prompted to set up two-factor authentication.

Step 6: Set Up the Authenticator App

1. Open a two-factor authentication app on your mobile device (e.g., Google Authenticator, Microsoft Authenticator, or Duo).
2. Scan the QR code displayed on your SiteKiosk login screen.
3. Enter the 6-digit verification code generated by your authenticator app into the provided field.
4. Click Login to complete the process.

From now on, each time you sign in, you will be asked to provide a new two-factor authentication code from your app.

Step 7: Confirm Your Setup

Once your code is verified, you’ll be logged in securely. Two-factor authentication will now be required for all team members unless it is later disabled by an administrator.

That’s all there is to it! Your SiteKiosk Online environment now has an added layer of protection.
If you encounter any issues or have questions, contact SiteKiosk support or leave a comment on the tutorial page.

FAQ: 2FA in SiteKiosk Online

Q: Do I need two-factor authentication if we already use LDAP or Microsoft Entra ID?
A: No, authentication through LDAP or Microsoft Entra ID is handled externally, so two-factor authentication in SiteKiosk Online is not required.

Q: Who can enable or disable two-factor authentication?
A: Only users with the Administrator role can activate or deactivate 2FA in the Team Settings menu.

Q: Does enabling two-factor authentication affect all team members?
A: Yes, once enforced, all users must set up and use an authenticator app when logging in.

Q: Which authenticator apps can I use?
A: You can use any app that supports time-based one-time passwords, such as Google Authenticator, Microsoft Authenticator, or Duo.

Q: What should I do if a user loses access to their authenticator app?
A: An administrator can reset the user's 2FA under that user's properties in SiteKiosk Online.

Q: Can two-factor authentication be temporarily turned off?
A: Yes, administrators can uncheck “Enforce Two-Factor Authentication” in Team Settings and click "Save" to disable it for all users.

Q: Will enabling 2FA affect kiosk operation or client connections?
A: No, 2FA only applies to logging into the SiteKiosk Online web account and does not affect kiosk runtime or device connectivity.