small logo
Group
Group

Employment Operating System

Start free
Request a demo

Hiring

All-in-one hiring solution

Curated talent shortlists, AI hiring automation and more

Applicant Tracking System

Manage open roles, interviews and onboard in a few clicks

SmartMatch

Hire smarter with salary insights and candidate matches for every role

Employer of record

Hire the best talent across 150+ countries

HR and Payroll

Core HR

Manage employee data, compliance, and critical HR tasks in one place

Time & attendance

Automate and sync time tracking, timesheets, and rostering

Intelligent Payroll

Manage all payroll tasks from one place with AI-powered automation

Insights & analytics

Make data-driven decisions with easy reporting and dashboards

Employee Experience

Mobile app

Roll work, pay, savings, and benefits into one employee superapp

Learning

A comprehensive collection of courses tailored to your business
See Pricing
See all products
Case studies
Industry solutions
Integrations
Resources
Support

Employment Operating System

Become a partner

Hr & Payroll Partners

Join the partner network

Explore HR and Payroll partnership opportunities for your business

Referral partners

Get rewarded for referring Employment Hero solutions

Strategic Partners

Become a strategic partner

Build a high-impact partnership with Employment Hero

Partner Resources

Partner directory

Streamline payroll, HR and more with our trusted business partners

Learning

See how our partners solve employment for their clients

Hero Foundation

Supporting people into work
See Pricing
Industry solutions
Integrations
Hero Foundation

Employment Operating System

Manage Your Work

Work admin, sorted

Leave requests, timesheets, money and work perks, all in one easy app

Connect with your team

Celebrate wins, shoutout your teammates and stay across updates

Learning & development

Complete critical training, set personal goals and grow your career

From Anywhere

Employment Hero work app

Download the app to manage work, pay and perks on the go

Desktop login

Manage HR tasks, training and work admin from the web
Download the app

Employment Hero Work app

Download today and start saving
Resources
Support

Employment Operating System

Find a job

Find Your Next Role

Jobs find you

Find work faster with job matching and off-market opportunities

Explore open roles

Browse and apply to open jobs with 300K+ employers

Prep For Your Next Role

Job hunting tips and tricks

Make finding work easier with these resources, videos and interviews

From Anywhere

Employment Hero jobs site

Sign up and get matched to roles that suit your skills and experience
Get started

Employment Hero Jobs

Find your next role, today
Resources
Support
Blog

Two factor authentication in Employment Hero Payroll

  • The Team

Published

Updated

5 mins read

Image

Contents

There’s no hiding the fact we live in a highly digitised world. Whilst this provides us many luxuries not afforded to past generations, it has also resulted in increased digital crime, identity theft and internet fraud. As businesses continue to digitally transform their processes, it’s crucial to ensure that all software being used, has built-in security features such as Two-Factor Authentication (2FA) to protect their data.

What is Two-Factor Authentication?

Put simply, Two-Factor Authentication is an extra layer of security that is known as “multi factor authentication“. It requires not only a username and password but also something that only that user has on them, i.e. a piece of information only they should know or have immediately to hand – such as a physical token.

How does Two-Factor Authentication work?

Currently, when logging into Employment Hero Payroll a user is asked to enter their email address and password. Once 2FA is enabled and they log in for the first time, they will be asked to enter a verification code. This temporary code will be sent to the user either via email or SMS (depending on their settings). The user will only be able to continue once they have entered the correct verification code.

When the user attempts to login using a new device for the first time, they will need to undertake the 2FA process and enter the verification code sent to them. By entering the code, they are verifying that the new device is to be trusted. It’s all part of the extra security, folks!

Also note: logins and 2FA are cookie-based, so if cookies are deleted as part of clearing the device of files, browser cache, or history, then users will need to undertake the 2FA process again.

How do I enable Two-Factor Authentication?

2FA can be enabled at four different levels, as follows:

  • Employee;
  • User;
  • Business;
  • Branded payroll.

Employees & Users

Employees and Business Users (both full access or restricted users) can choose to enable 2FA for their account. This is possible to do even if it is not enforced at a Business or Branded Payroll level.

To access the setup, click on ‘My Account’ on the top right hand side:

Users will then see a section dedicated to 2FA:

Two-Factor Authentication enabled in KeyPay

To enable 2FA, users need to:

  1. confirm their email address (they will receive an email and will be required to click on the link); and/or
  2. add their mobile phone (they will then receive a confirmation code via text that must be entered).

Users can choose to confirm only one of the above, however we strongly recommend they confirm both options. It also goes without saying that a users email address and mobile number should be kept up to date in Employment Hero Payroll at all times!

Businesses

A Business can choose to enforce 2FA on all of its full access users. Once enabled, a full access user will not be able to login to Employment Hero Payroll without having undergone the 2FA process.

To configure this setting, go to Payroll Settings > Manage Users and click on the “Manage Two-Factor Authentication” tab:

Two-Factor Authentication enabled in KeyPay

Upon selecting “Require two-factor authentication for full access users”, a second setting will appear with the option of enforcing 2FA when submitting super batches via our ClickSuper integration.

Branded payroll

A Branded Payroll Manager can choose to enforce 2FA on all Businesses set up under their Branded Payroll. To configure this setting, go to Branded Payroll settings > Security and click on the “Manage Two-Factor Authentication” tab:

Once enabled, all Businesses associated with the Branded Payroll will automatically be required to undergo 2FA for all its full access users. Please note that this setting can be disabled at an individual Business level.

Strengthened Password Security

When a user sets up a password for the first time or resets their password, they will notice a scale determining the strength of their password, as follows:

Two-Factor Authentication enabled in KeyPay

A user will not be able to save a password classified as either Weak or Normal. As a minimum, the password must be classified as Medium.

To find out more about two-factor authentication in Employment Hero Payroll for your region, take a look at our support articles here: AU | NZ | UK | SG | MY

Learn more

Related Resources

View all

-
LinkedIn
of