If you use ValidSign with a shared account, the change regarding 2FA has a greater impact on you as a user. You and your colleagues must enter a 2FA code at every login. There are several methods to arrange this.
1. Shared accounts via permissions
The most suitable option when working together in a generic account is to assign each user their own ValidSign account. In this way, each user can set their own authentication code on their mobile phone or in the password manager. Users then log in with their own account and can be "logged through" from this personal account to the shared account to carry out tasks there. More information about permissions can be found here.
Note: Your organisation may require additional user licences to apply this method.
2. Use Single Sign-On (SSO) for your environment
A second possibility is to implement Single Sign-On (SSO) within your organisation. If SSO is implemented and you login using SSO, you are not required to configure 2FA. In this situation, just like in the first scenario, you use permissions to "log through" from personal accounts to the shared account. Here you will find further information about permissions.
Note: Your organisation may require additional user licences to apply this method. SSO is an additional feature within ValidSign.
3. Continue using shared accounts with 2FA
If the above options are not applicable within your organisation, it is of course also possible to continue using the joint login on the shared account. There are several methods to set up 2FA for your users.
- Scanning simultaneously
When you are about to scan the QR code, you can sit together with the involved employees around the desktop at the moment the 2FA is set up. As soon as the QR code appears on the screen, everyone scans it with the authentication app on their mobile phone. After everyone has scanned the QR code, one person can enter the code and complete the configuration. After this, everyone can log in to the account. - Take a screenshot of the QR code
If it is not possible to gather all users simultaneously, physically or via a Teams session, it is permitted to take a screenshot of the QR code. This can later be used by a user to set up 2FA. The QR code remains valid even after the configuration has been completed. - Password manager with OTP functionality
If your organisation uses a password manager that supports storing 2FA, you can save the 2FA code in it. Examples of such password managers are 1Password, LastPass and KeePass. An additional module may be required to use the OTP functionality within these password managers.