Keeper takes security very seriously – we follow industry best practices and encrypt all data at rest and in transit. Additionally, Keeper supports SMS-based Two-Factor Authentication (2FA) for both the Client Portal and for accountant users.
Enable 2FA for Users
Go to Practice Settings (⚙️ icon)
Click Manage Users
If necessary, add a phone number for the applicable user(s)
Check ✔️ 2FA
Users will be prompted to set up their 2FA upon login by (a) setting up one-time-password authentication via an authenticator app or (b) verifying their phone number for authentication via text message
Disabling 2FA? You'll just un-check the box to disable this feature.
If you can't log in due to issues with 2FA, contact an admin on your team to disable this for you. You can also reach out to Keeper Support at help@keeper.app if an admin is not available!
Enable 2FA for Clients
Before enabling 2FA for your Clients, make sure to confirm that all clients that need 2FA enabled have a phone number listed and that number can receive text messages.
To enable the 2FA settings option for your client portal contacts,
Go to your Practice Settings (⚙️ icon)
Select Client Portal
Select the Security tab
Check ✔️ Enable 2FA
Once you've selected 'Enable 2FA' in your Practice Settings, you can enable two-factor authentication for you contacts.
From the close,
Go to Portal Settings
Check the corresponding box in the 2FA enabled column
For a practice-wide view of all contacts' 2FA settings,
Go to Practice Settings
Go to Client Portal
Go to the All Contacts tab
Check the 2FA enabled column as needed
Make sure you're only enabling 2FA for contacts with listed phone numbers
If you do not see an option to enable 2FA for your client portal contacts, ask an admin to check that contact-level 2FA settings have been enabled under Practice Settings > Client Portal > Security.
What does the two-factor authentication (2FA) text look like?
Once you have enabled 2FA, users and clients will be prompted to enter an additional number from a text to sign in. For clients, this will be in addition to using their magic link, Google SSO, or password.
