User Security

Optional enhanced user login security includes Trusted Devices and Two Factor Authentication. As of August 12, 2025 2FA is required for all user logins. Having saved trusted devices will limit the need to use two factor on every login. To set up trusted devices, engage with the prompt after your login attempt to save your current device, browser, computer, and IP location as trusted (see more on this below). A change in any one of these (computer, IP, browser, etc.) would require a separate login. You will be able to view all trusted devices within the Security section on the user record. Also, when logging in from a new device/location you will be prompted to save it as a trusted device.

To set up or edit security settings*, go to your user record which can be accomplished by clicking on the icon  at the top-left of the page next to your username (the same method you would use to change other information on your user record). In the pop-up click on Edit User. All information on your user record can be edited here. If you are not a client admin, only the User Details tab will be editable.
 

Scroll to the bottom of the user record to find the Security section. To unlock this section, you will need to type or paste your password. NOTE: Only the user can unlock their own security section, no one else can edit this section for them.
 

*Reseller Users must edit their security section in the reseller gateway rather than a connected user in one of their accounts. The same steps apply. In the reseller gateway, click on the icon next to your reseller username and click the edit user to get to the reseller record. Click Edit to edit the record. In the same confirmation box, retype your password to unlock the security section.

Once unlocked, you will find any saved Trusted Devices. Client users, not reseller users, will also be able to create and manage API tokens here as well. Once enabled, any time you log in from an entrusted device, or if your last two-factor authentication was more than 30 days ago from a trusted device, you will be prompted to reauthenticate.

 

Trusted Devices

When logging in from an unknown device/location, a user will be prompted to decide if they want to save as a trusted device. Also, if you are logging in from a non-trusted device you will be forced to confirm your login via 2FA. A user is not required to save their device when requested. However, if you do not save your device you will continue to receive that prompt on future logins and your user's email will receive an email that a login has occurred on an untrusted device. If you get one of these emails not related to your login, we suggest you change your password as soon as possible.


After typing in your login and password you will be prompted to decide if your wish to save your device or not. Leaving the selection at No and clicking continue will not save the device. Toggling to Yes and clicking continue will prompt you to name your device. A trusted device is a combination of the user's IP address, Browser, and Operating System. If you choose to save a trusted device we suggest giving it a friendly name (Home Computer Chrome etc.). If you work with a VPN, you can see a change in device with the VPN on rather than off. If your IP changes (which could happen if your location uses a dynamic IP address) you could find yourself logged off when your IP changes. You will be given the option to save this new location as a trusted device.



 

Two Factor Authentication

As of August 12, 2025 Two Factor Authentication (2FA) is now required for all emfluence platform logins. Two Factor Authentication provides an additional level of security. Users will need to prove their identity by inputting a code they will receive to confirm their login via email. While you do not need to save trusted devices in order to use two factor authentication, it is suggested.


You will regularly be prompted to provide a new generated code when logging in. If you are logging in from trusted devices, these two factor confirmations will be less frequent. These will be sent to the email saved on your user record. In order to complete the login process, check your email to find the new code. Any time you log into the platform from somewhere other than a trusted device, you will be prompted to input the code sent to you. Also, when your last two-factor authentication came more than 30 days, even if you are on a trusted device, you will prompted for the code. If you do not save trusted devices, you will be prompted every single time you log in.