1. Humi Help Centre
  2. Getting Started
  3. FAQs
  4. Admin FAQs

Multi-Factor Authentication (MFA / 2FA)

Updated
Have more questions? Submit a request

Articles in this section

It's more important than ever to ensure your company's security in online spaces. To meet evolving compliance standards and further strengthen the protection of sensitive employee data, Multi-Factor Authentication (MFA) is now mandatory and enforced for all users as of December 1, 2025.

Once enforced, employees will need to pass through an additional verification step (one-time passcode) when logging into the platform.

Multi-Factor Authentication (MFA) Status

Good news! Multi-Factor Authentication is now enabled by default for all user accounts.

You no longer need to manually turn on MFA. If you visit your security settings, the MFA toggle will show as On and cannot be disabled.

Employee Action: How to Set Up Mandatory MFA

Since MFA is now mandatory, employees no longer need to manually enable it. The system will prompt them automatically.

  1. When an employee signs in for the first time after the enforcement date, they will be prompted to complete the MFA enrollment process immediately.
  2. The employee must choose a verification method (Authenticator App, Email, or Text Confirmation) and complete the setup before they can access their account.
  3. They will be given a Recovery Code during setup. Employees must securely store this code, as it is the primary way to regain access if they lose their authentication device.

How to Set Up MFA Without a Mobile Phone

If you don't have a smartphone or a mobile phone to receive text messages, don't worry. You can set up your security login (MFA) using a program directly on your computer for the initial setup.

1. Choose Your Computer App

First, make sure you have one of these programs installed on your computer. These will act just like a phone app to generate your security codes:

2. Follow These Setup Steps

Once the new security rules begin, follow these steps the first time you log in:

  1. Log in as usual: Go to the login page on your computer.
  2. Find the Code: You will see a QR code (square barcode) appear on your screen.
  3. Open your App: Open the program you chose from the list above (like Keeper or LastPass).
  4. Scan the Screen: Look for an option inside the app to "Scan QR Code" or "Screen Capture." It will try to read the code currently on your screen.
  5. If Scanning Doesn't Work:
    • Look at the login screen and click the link that says "Trouble scanning?" or "Try another method."
    • This will give you a mix of letters and numbers.
    • Type those letters and numbers manually into your computer app.
  6. Finish Up: The app will give you a 6-digit code. Enter this on the login screen to finish.

Note: From now on, whenever the system asks for a security code, you will use this desktop app to generate the one-time passcode for logging in.

How to Log In with Multi-Factor Authentication

Once enrolled, users will be required to enter a one-time passcode whenever they sign in. There are three available methods:

  • Authenticator App (Preferred): The user enters a one-time passcode generated by an authenticator app (like Google Authenticator or Authy) on their mobile device.
  • Email Confirmation: The user sends a one-time passcode to themselves via their primary email address.
  • Text Confirmation: The user sends a one-time passcode to themselves via text message (SMS).

FAQs

Is MFA required if we are using SSO?

Yes, to meet evolving compliance standards and further strengthen the protection of sensitive employee data within Humi by Employment Hero, as of Dec 1, 2025 we are implementing Multi-Factor Authentication (MFA) for all users, regardless of whether they access Humi by Employment Hero through SSO.

Does Multi-Factor Authentication Apply to the Mobile App?

Yes. If a user has any role where MFA has been enabled/enforced, they will need to go through the additional verification step when logging into the Humi Mobile App.

How do I log in without a smart phone or mobile phone?

If you do not have a company smartphone or mobile device, you can still complete your secure login setup using a desktop application. Approved tools such as Keeper, LastPass, or 1Password allow you to verify your identity and generate one-time passcodes directly on your computer, removing the need for an external device. For step-by-step details scroll up to this section: How to Set Up MFA Without a Mobile Phone.

Curious about Single Sign-On (SSO)?

If you want to up your security even further, you can enable SSO to ensure users are accessing their Humi accounts through your chosen provider: Microsoft/Microsoft Azure AD, Google/Google Workspace or Okta.

Click here to learn more.

Did this article answer your question?
0 out of 1 found this helpful

Comments

0 comments

Please sign in to leave a comment.