Multi-factor authentication (MFA) adds a second verification step when you sign in. With MFA turned on, you enter a one-time password (OTP) after your username and password.

Dotcom-Monitor supports three ways to receive that OTP:

  • Email — a code sent to your verified email address
  • SMS — a code texted to your verified mobile number
  • Authenticator app — a six-digit code from an app such as Google Authenticator, Microsoft Authenticator, or Authy

MFA can be turned on for your whole account or for a single user.

Turn On MFA

For all users (admins): Go to Account Settings > Security and choose a method.

For one user: Go to My Profile > Security and choose a method.

How setup proceeds depends on the method:

  • Email or SMS — no extra setup. At your next sign-in, a code is sent to your verified email or phone.
  • Authenticator app — you’ll complete a one-time setup (see below). If you enabled it from My Profile, setup starts right away. If an admin enabled it account-wide, each user completes setup at their next sign-in.

Set Up the Authenticator App

  1. Sign in to Dotcom-Monitor with your username and password.
  2. On your phone, open your authenticator app and add a new account.
  3. Scan the QR code on screen, or enter the setup key manually.
  4. Type the six-digit code from the app into the dialog and click Verify Code.

After verification, MFA is active and required for future sign-ins.

Good to Know

  • OTP codes expire after 15 minutes and work only once.
  • SMS is limited to two code requests per 15-minute period.
  • MFA can only be turned off by someone who can sign in to the account.
  • If your SMS number is no longer valid, ask your account administrator to update it.

If You Lose Access to Your Email or Phone

Reset your password, then use Log Out Everywhere on the Security page. This signs you out on every device and forces a fresh sign-in with your new password.

Reset the Authenticator App

Reset the authenticator when you can no longer get valid codes or the secret key needs to be replaced. Common reasons:

  • Phone lost, stolen, or replaced — the old codes are no longer accessible.
  • App reinstalled or data wiped — a reinstall or factory reset erases stored accounts.
  • Clock out of sync — if the app’s time drifts, its codes stop working.
  • Locked out — an admin can reset the authenticator to restore access.
  • Possible compromise — if the secret key may have been exposed, resetting issues a new one.

In every case, resetting invalidates the old codes. At the next sign-in, you scan a new QR code and set up the app again.

Reset Your Own

Go to My Profile > Security > Authenticator App > Reconfigure.

Reset Another User’s (admins only)

  1. Open Account Settings and go to the Users tab.
  2. Select the user you want to edit.
  3. Click Reset Authenticator App.