Skip to content
Skyforge Deliver Skyforge Deliver Docs

Account security & MFA

Add a second layer of protection to your account with two-factor authentication (2FA). With 2FA on, signing in needs both your password and a short code from an app on your phone — so a stolen password alone isn’t enough.

You’ll find this under Account security in the left navigation.

Turn on two-factor authentication

Skyforge Deliver uses authenticator apps (TOTP) — the same kind used by Google Authenticator, 1Password, Authy, Microsoft Authenticator, and similar.

  1. Open Account security and click Enable 2FA.
  2. Scan the QR code with your authenticator app (or type in the setup key it shows, if you can’t scan).
  3. Enter the 6-digit code from the app to confirm.
  4. Save your recovery codes (next section) — this is the only time they’re shown.

From then on, you’ll enter a code from your app each time you sign in with your password.

Recovery codes

When you enable 2FA you’re given a set of one-time recovery codes. Each one can be used in place of your authenticator code if you ever lose access to your phone.

  • Save them somewhere safe (a password manager is ideal). They’re shown only once at setup.
  • Each code works once. Your remaining count is shown on the security page.
  • If you’re running low — or think a code may be exposed — click Regenerate recovery codes (you’ll confirm with a current code). Regenerating replaces the whole set; the old codes stop working.

If you lose both your authenticator app and your recovery codes, contact support to recover access.

Require 2FA for your whole workspace (admins)

If you run a team, you can require all staff to use 2FA. In Settings, turn on Require 2FA for staff who sign in with a password.

  • Once it’s on, any admin or team member who signs in with a password and hasn’t set up 2FA is prompted to enroll before they can continue.
  • It does not affect people who sign in with Google or Apple — those accounts already carry the provider’s own two-step protection — and it doesn’t apply to your customers.
  • You can turn the policy off at any time.

This pairs well with Team members & roles — set the policy once and every current and future staff member is covered.

Turning 2FA off

You can disable 2FA from Account security; you’ll confirm with your password and a current authenticator (or recovery) code.

Admins — order matters: if you want to turn 2FA off for yourself and your workspace still requires it, turn the workspace requirement off first (the section above). If you disable your own 2FA while it’s still required, you’ll be prompted to re-enroll the moment you navigate — so you’d have to set your own 2FA back up just to get in and change the policy.

What’s next