Sugar 2FA

Companies that store and work with sensitive data are advised to lock everything more securely. Sugar 2FA protects your system by adding an additional layer of security.

The majority of online applications have 2-factor authentication implemented. With Sugar 2FA you can be like Google, Salesforce, Microsoft, Zoho, Slack, QuickBooks, Shopify, PayPal, MailChimp, Twitter, and Basecamp, to name a few.

Sugar 2FA does not read, save, share, or send users’ credentials outside of the SugarCRM application. Credentials are checked using SugarCRM’s default methods for validating credentials. Sugar 2FA module does not send any piece of data from your SugarCRM to the outside world (except for license key validation).

Sugar 2FA uses the most convenient and efficient way of adding a second layer of security: tokens generated on your mobile phone by free authentication app. Each user will be required to complete the configuration wizard for their authentication app. Users need to enter a token (6-digit code) generated by the app as part of their login process, after entering their credentials.

Authentication apps generate time-based tokens for particular users. If you are working from an office with no internet access, the authentication app will still work since it does not require internet connection.

There are a number of authentication apps available for all types of mobile phones: ‘Google Authenticator’, ‘Microsoft Authenticator’, ‘LastPass Authenticator’, ‘Authy’. They are all free and trusted applications that can be used with Sugar 2FA. You can also use any other app (that supports generating time-based tokens) of your choice.