Two-Factor Authentication

Two-factor authentication (2FA) is a security measure that adds an extra step to your login process to protect the security of your account. 2FA requires that you enter your login credentials along with a secondary piece of information that only you would have, such as a pin that an authenticator sends to your phone.

Enable 2FA

Enabling 2FA is completely optional, but highly recommended because your program contains sensitive information about potential vulnerabilities and bugs that affect your organization.

To enable 2FA:

  1. Go to Profile & Account.

    account-setting

  2. Go to the Security tab, enter your password, and click the Enable Two Factor Authentication button.

    enable-two-factor-auth

  3. Follow the three step process as directed on the screen and then click the Enable button. After you enable 2FA, you will be prompted to enter in your authentication code each time you log in to Crowdcontrol.

    We’ve included check marks to indicate which team members have their Two Factor Authentication (2FA) enabled. Allowing customers to note who on their team needs to turn on their 2FA to be protected.

    Using SAML as a means of authentication can leverage two factor through their provider and not the platform, thus we do not display the check next to SAML authenticated users.

    ![bounty-analyst](/assets/images/customer/two-factor-authentication/bounty-analyst.png)

Disable 2FA

  1. Go to Profile & Account.

    profile-account-security

  2. Go to the Security tab, enter your password, and click the Two Factor Authentication button.

    security-two-factor

  3. Click Disable Two-Factor Authentication.

    Once confirmed the page will redirect to the login page.

    disable-two-factor

Common issues with 2-Step Verification

  • New Phone
  • Lost
  • Stolen

For assistance, send an email to support@bugcrowd.com.


Onboarding
Account Management
Program Management
Reporting
Submission Management
Integration Management