Two-Factor Authentication

StrataSite™ values your security and now requires Two-Factor Authentication (2FA), sometimes called Multifactor Authentication (MFA). When you log in, you will need more than just your email address and password — you will also be required to enter a code that can be sent to you via email or an authenticator app, which adds another layer (or factor) of security.

After you enter your email address and password on the login screen, you will see the Enable Two-Factor Authentication screen (Fig. 1).

Figure 1. The Enable Two-factor Authentication screen.
Figure 1. The Enable Two-Factor Authentication screen.

If you would like to receive your code via email, simply click the Send a one-time code button, retrieve the code from the email you receive, enter it in the Verification code field, and click the Submit button (Fig. 1, above). The code will expire after 15 minutes, so if you are unable to enter it promptly, you may need to repeat the above process to have a new one sent.


If you already use an authenticator app (such as Google Authenticator, Microsoft Authenticator, Duo Mobile, etc.) and would prefer to receive your code there, click the Select a method pop-up menu and choose Authenticator app instead of Email. A new screen with a QR code will be displayed (Fig. 2). Follow the instructions included with your authenticator app to continue.

Figure 2. The Enable Two-factor Authentication screen with QR code
Figure 2. The Enable Two-Factor Authentication screen with QR code

After you enter your code, the Recovery codes screen will be displayed (Fig. 3).

Figure 3. The Recovery codes screen
Figure 3. The Recovery codes screen

Ten codes will be displayed — either store them on your device or print them out, taking care to store them somewhere safe. You will need to use one of these codes in the unlikely event you are unable to receive a one-time code via email or authenticator app.

NOTE: Each Recovery code can only be used once.

If your device supports it, you may be able to log in with a passkey instead of your email address and password. This method is generally considered to be more secure. Your device may support a fingerprint sensor, facial recognition or PIN (Personal Identification Number). If you do not want to register a passkey, click the Not now button on the screen that is displayed (Fig. 4). If you would like to use a passkey, type the name of your device in the Display name field and click the Register button. Refer to your device's documentation for more information on how it handles passkeys.

Figure 4. The passkey registration screen
Figure 4. The Passkey registration screen

NOTE: You will need to sign in again using 2FA every 30 days, or possibly sooner if your account has been idle.