Overview
App-Based Two-Factor Authentication allows users to secure their Wealthbox account using authenticator apps (such as Google Authenticator or Microsoft Authenticator) instead of SMS text messages. This provides a more secure and reliable second factor that does not depend on cellular service or phone number changes.
App-based 2FA is available on all Wealthbox subscription plans (Basic, Pro, Premier, and Enterprise).
How Does App-Based 2FA Work?
Similar to SMS-based 2FA, only Owner or Admin users can enable this feature for a workspace. Once enabled, all users in that workspace will be prompted to set up app-based 2FA the next time they log in.
Authenticator App Option: Users can choose between SMS or app-based 2FA in Account Security settings by scanning a QR code with any TOTP-compatible authenticator app.
Backup Codes: Confirming receipt of backup codes is required for both SMS and app-based 2FA after setup.
How to Enable App-Based 2FA
- Select the three dots (⋮) in the upper-right corner, then click Settings.
- Go to Account Security and select Authenticator App from the 2FA dropdown.
Scan the QR code with the authenticator app of your choice.
(Alternatively, if you cannot scan the QR code, copy the numerical code into your authenticator app.)Enter the 6-digit code from the authenticator app to verify.
Important: Save the 10 backup codes in a secure location.
After copying or printing them, confirm that the backup codes were saved to complete the verification process.
How to Switch from SMS to App-Based 2FA:
Select the three dots (⋮) in the upper-right corner, then click Settings.
Click Account Security and change the 2FA dropdown from Text Message to Authenticator App.
-
Complete the QR code setup process.
Note: New backup codes will be generated when switching between two-factor authentication methods; therefore, please ensure that you save the new codes.
Supported Authenticator Apps
Google Authenticator
Microsoft Authenticator
Authy
1Password
2FAS
Apple Passwords
Troubleshooting & FAQs
Q: Can I set up app-based 2FA on the mobile app?
A: Yes, but you'll get a numerical code for your authenticator app instead of a QR code.
Android users need version 2.8.121 or later, and iOS users should have the latest version of the app.
Q: Can my app-based 2FA credentials be shared across workspaces?
A: The authenticator app secret and backup codes are saved on the user's profile, not individual workspaces. Once set up, the same authenticator entry works for all their workspaces.
Q: Can 2FA be enabled for multiple workspaces?
A: 2FA is configured per workspace. If you belong to multiple workspaces with different 2FA settings, you will be required to complete 2FA on login if it is enabled in any workspace. After that, you can access all workspaces regardless of their 2FA settings.
Q: Does app-based 2FA remove SMS 2FA?
A: App-based 2FA takes priority over SMS. If a user belongs to one workspace with app-based 2FA and another with SMS-based 2FA, they will use app-based 2FA for both.
Q: If I enable 2FA in one workspace, will that affect other workspaces?
A: Enabling 2FA applies to all users within that workspace. Users in workspaces where 2FA is not enabled will remain unaffected. However, if a user belongs to multiple workspaces and 2FA is enabled in any one of them, they will be required to complete 2FA at login for all workspaces.
Q: Can I use app-based 2FA and SMS within the same workspace?
A: No. Only one type of 2FA method can be used per workspace. A workspace cannot have some users using SMS and others using app-based 2FA.
Q: Can I generate a new QR code after setting up app-based 2FA?
A: No. Once a user has completed the app-based 2FA setup, they cannot restart the process to generate a new QR code. If you misplace your phone or lose access to your authenticator app, please contact Wealthbox Support.
Q: Why am I required to download my backup codes?
A: Backup codes provide a recovery method if you lose access to your authenticator app. Requiring users to confirm their codes during setup ensures they have an opportunity to save or print them for future use.