Security Settings in WFM

You can enable two-factor authentication (2FA) in Workforce Management (WFM) to add a layer of security to your account.

Before you enable the setting, do the following:

Set up your mobile number in your profile. You must have a valid mobile number to enable recovery of your account if you lose your token generator and your backup codes.
Understand the use of token-based authenticator apps and download one on your mobile device. With 2FA turned on, an authenticator app will generate the verification code required for you to sign in to your account.

Go to the configuration page.
- If you are working on the standalone WFM site, from the upper right corner of the screen, click the user icon. Click Configure 2-factor.
- If you are working on WFM in NetSuite, go to Workforce Management. Go to Setup > Security Settings.
On the Enable Two-Factor Authentication page, scan the bar code which is generated on-screen.
Enter the code that appears on the authenticator app. Click Next.
On the Expire verification after field, enter the maximum number of minutes that you will be allowed to enter the code from the authenticator in future verification sessions. Click Save.

Changes to this field will only affect new verification events. Existing verified sessions will expire according to the settings that were in place when the verification occurred.
(Optional) Generate backup codes and store these somewhere secure, as these can be used to validate your login if you do not have access to the authenticator.

If you don't have backup codes set up, you can request a code to be sent via SMS to remove your 2FA setting.

After you configure your 2FA settings, you will be required to validate your login when you:

When asked to validate your login, provide the code from your authenticator app. This code changes every 30 seconds.

You can continue accessing these pages until the validation has expired or until you log out.