Two-Factor Authentication (2FA)
Two-Factor Authentication (2FA) is an additional layer of verification used when logging in to your B2B Wave platform. It works as an extra security measure to protect your account from unauthorized users who may try to access it.
When enabling two-factor authentication, you and your customers must verify your identity in two steps: first, by providing your password, and second, by using a one-time code generated by an authenticator app (e.g., Google Authenticator, Authy).
Two-factor authentication is optional for your account. This article will walk you through how to activate or deactivate it on B2B Wave for admin users and customers.
Enabling Two-Factor Authentication as a Super Admin or Admin User
To set the two-factor authentication for your account, follow these steps:
Step 1. Login to B2B Wave, click on the profile icon at the top right of your screen, and select “Edit password & email.” Alternatively, you can go to Settings >Edit password.
Step 2. On the “Edit password” page, scroll down to the “Two factor authentication” section. Next, click “Enable Two Factor Authentication.”
Step 3. On the “Confirm password” page, type your password and click “Submit” to activate additional verification when you sign in to your B2B Wave account. Note that this screen may not appear if you have recently logged in to your profile (i.e., approximately less than twenty minutes ago).
Step 4. Open your authenticator app and scan the QR code, type in the code generated on your app in the “Confirm OTP Code” field, and click “Confirm and Enable Two Factor.”
NOTE: If you cannot scan the QR Code on the screen, enter the key you find under it directly on your authenticator app to generate a one-time code.
Step 5. Download the backup codes on the “Two Factor Authentication” page. You can use these codes if you lose access to your authenticator app.
NOTE: If you’re a super admin, you can see which admin users have activated the two-factor authentication by going to Settings >Users.
Disabling Two-Factor Authentication as a Super Admin or Admin User
You can deactivate the two-factor authentication for your admin account. To do so, follow these steps:
Step 1. Login to B2B Wave, click on the profile icon at the top right of your screen, and select “Edit password & email.” Alternatively, you can go to Settings >Edit password.
Step 2. On the “Edit password” page, scroll down to the “Two factor authentication” section. Next, click “Disable Two Factor Authentication.”
Step 3. On the “Disable Two Factor Authentication” page, insert the one-time code your authenticator app generates, and click “Disable” to confirm your selection.
Disabling Two-Factor Authentication for Admin Users as a Super Admin User
Super admins can edit users and turn off two-factor authentication for their accounts if they lose access to their phones or backup codes. To do so, complete these steps:
Step 1. Go to Settings >Users and select the user for whom you want to deactivate this option. Remember that you can do so only for admin users who have previously activated the two-factor authentication.
Step 2. On the “Editing user” page, uncheck the “Two Factor Authentication” box, and click “Save” to finalize this action.
Enabling Two-Factor Authentication for Customers as a Super Admin or Admin User
You can enable the two-factor authentication feature for customers, too. Let’s see how you can do it:
Step 1. Go to Settings >Profile and click the “Application configuration” tab.
Step 2. Scroll to the “Customers” section and check “Enable Two Factor Authentication,” and click “Save.”
NOTE: You can deactivate the two-factor authentication feature for customers by going to Settings >Profile >Application configuration, unchecking the “Enable Two Factor Authentication,” and clicking “Save.”
Disabling Two-Factor Authentication for Customers as a Super Admin or Admin User
Admins and super admins can edit customers and turn off two-factor authentication for their accounts if they lose access to their phones or backup codes. To do so, complete these steps:
Step 1. Go to the Customers menu on your Admin Panel and select the customer for whom you want to reset the two-factor authentication.
Step 2. On the “Editing customer” page, go to the “Customer details” tab, then uncheck the “Two Factor Authentication” box, and click “Save” to finalize this action. Remember that you can do this only for customers who have enabled the two-step verification process (described below) for their and their sub-customers’ accounts.
Activating Two-Factor Authentication As a Customer
Once you turn on two-factor authentication, customers can enable this extra verification for their account. To do so, customers should complete the following steps:
Step 1. Log in to your online B2B store, go to the “Account” menu, and click “My account.”
Step 2. Click “Enable Two Factor Authentication” on the “Edit Customer Details” page.
Step 3. Type their password on the “Confirm Password” page and click “Submit.” Note that this screen may not appear if customers have recently logged in to your B2B store (i.e., approximately less than twenty minutes ago).
Step 4. Open their authenticator app and scan the QR code. Then, insert the code generated on the app in the “Cοde*” field, and click “Confirm and Enable Two Factor.”
NOTE: If customers cannot scan the QR Code on the screen, they can enter the key they find under it directly on their authenticator app to generate a one-time code.
Step 5. Download the backup codes on the “Two Factor Authentication” page. Customers can use these codes if they lose access to their authenticator app.
NOTE: Remember that only customers can set up two-step verification for their account. Super admin and admin users cannot enable it by impersonating the customer.
Deactivating Two-Factor Authentication As a Customer
Customers can turn off two-factor authentication for their account by completing these steps:
Step 1. Log in to your online B2B store, go to the “Account” menu, and click “My account.”
Step 2. On the “Edit Customer Details” page, click “Disable Two Factor Authentication.”
Step 3. On the “Disable Two Factor Authentication” page, type the one-time code generated by their authenticator app and click “Disable.” 