Article Section Links:
To keep user account information safe, practices have the option to utilize two-factor authentication when having their users log into ThoroughCare. Two-factor authentication is an easy-to-use, secure method that supplements passwords to provide an online account with a second layer of security; it does not replace passwords. Continue through the following article for a simple step-by-step guide to setting up a user's two-factor authentication.
Group Customers: If two-factor authentication is enabled for your user account within one practice, it will be required to log into any of your authorized practices, regardless of whether or not the feature is enabled for the other practices.
First Contact ThoroughCare:
To enable 2 Factor Authentication on your site, a site admin will have to let a member of the ThoroughCare team know so that the feature can be activated. One can contact a member of our team by using the Intercom bubble located in the lower right-hand corner of any ThoroughCare screen.
Note: A customer admin must request this type of change to a practice/account. If you yourself are not an admin, consult your site admin about potentially enabling 2 Factor Authentication on your site.
Travel to User Settings:
In order to enable 2FA for a user, travel to the user's "Settings" page by clicking the user's name located in the upper right hand corner of the user's dashboard, as shown below.
Note: 2FA should only be set-up by and for the user that is currently logged in. DO NOT set up 2FA for a user other than yourself.
Once the dropdown box appears click the "Settings" menu item.
Note: Before beginning to set up 2 Factor Authentication for a user, make sure they have a mobile device on hand that can be used for the Google Authenticator app.
When the "Account Settings" page loads, the "Two Factor Authentication" section should be located in the center of the page as shown below. Click the green "Enable Two Factor Authentication" button, to begin setting up 2FA.
The "Two Factor Authentication" section should extend to look similar to the screenshot below. Scroll down the page to view the entire "Two Factor Authentication" section.
Completing 2 Factor Authentication Set-up:
First, use the provided links (under "Step 1") to navigate to the app store, or manually open the Apple/Play store on your mobile device and search "Google Authenticator".
Note: The Google Authenticator app must be downloaded on a mobile device, a user will not be able to download this app from a computer.
Once the "Google Authenticator" app is located click the "Get"/"Download" button as modeled in the screenshot below.
Mobile Device Screenshot:
Once the mobile app is downloaded on the user's device, touch/select to open the new app. when open, click the rainbow " + " sign located in the bottom right hand corner of the screen to set-up the Google Authenticator.
Mobile Device Screenshot:
When the " + " button is clicked the user should see two options appear, "Scan a QR code" and "Enter a setup key". For this example we are choosing the "Scan a QR code" option.
Note: If possible choose the "Scan a QR code" option, it's much quicker than having to enter the "setup key".
Mobile Device Screenshot:
Next the user should hold their phone up to their computer in order to capture/scan the QR code displayed on the screen. If the user is not able to scan the QR code under "Step 2", they can enter their "secret code"/setup key located directly underneath the QR code as highlighted in the screenshot below.
Once the QR code is scanned or the secret code is entered, the user should see a "ThoroughCare" code pop-up in the Google Authenticator app on their mobile device similar to the screenshot below.
Note: This code will be what the user enters when logging into ThoroughCare from now on. This code will update/change every 30 seconds, so the app should be opened upon every new login.
Mobile Device Screenshot:
When the user has completed the 2 Factor Authentication setup from their mobile device, they must verify the change in ThoroughCare by entering the target user's "current password" and a "6-digit token"/code which will be displayed in Google Authenticator app (modeled above). Once the user has entered the required information, click the green "Enable Two Factor Authentication" button as shown in the screenshot below.
Recovery Codes:
If 2 Factor Authentication is successful, ThoroughCare should open a "Recovery Tokens" pop-up in the user's browser. Copy down the codes incase they need used to recover the user's account in the future. When finished click the "Ok, Got it!" button.
Note: DO NOT click out of the "Recovery Tokens" pop-up without saving the recovery codes. If the user does not have access to their Google Authenticator app the recovery codes can be used to log into ThoroughCare.
Logging In:
Once a user's 2 Factor Authenticator is setup, they will be prompted to enter the "6-digit Token" displayed on their mobile phone within their Google Authenticator app. Enter the current code that is showing within the app and click "Verify Token"
Note: If the token is expired ThoroughCare will not allow you to access your account so make sure the code is refreshed before entering it into this pop-up.
For more information on enabling 2 factor authentication, not discussed in this article, chat with a ThoroughCare professional by clicking the blue chat bubble in the bottom right hand corner of every ThoroughCare screen!