Xero - beautiful accounting software

Xero Business Help Center

Xero Business Community

Community > Feature Requests >
118
Vote

Two Factor Authentication on Xero login

Started by David Loeffler -   in Feature Requests | Started

I'd really like to see Xero introduce the option of two factor authentication as Google and Dropbox have done. While I love Xero, as it's footprint becomes larger and larger, security could become an issue.

For those who don't know 2FA is an additional layer of security on top of a username and password, whereby a one-time password is generated for the user to input with each session (or even per machine).

Given the sensitive nature of the information people hold on Xero (bank account information, payroll data etc), I believe more security is better than less security.

Having 2FA as a pre-emptive measure could be very smart i.e. before something happens.

Both Dropbox and Google make it easy by allowing you to use Google Authenticator or SMS to enter in a one-time password. This is something that could be considered.
Official Xero Reply
Thanks again for all your recent comments and suggestions.

We’ve spent a bit of time on this making sure we evaluated all the options and coming up with the right solution design for Xero. Our development team are now working on a solution based on Google Authenticator and Time-based One-Time Passwords (TOTP). You’ll be able to use the Google Authenticator app on your device or compatible apps like Authy. You can find more information about TOTP here.

The initial release will make basic 2FA functionality available to those customers that want to use it. Then we’ll let customer feedback guide us on what additional 2FA enhancements you’d like to see in future releases.

We’ll update you in a couple of months with when you can expect this to be released.
 

Paul M (Xero Staff)