TABLE OF CONTENTS
- Overview
- Why Intersect uses authenticator-based 2FA
- What you need before setting up 2FA
- How to set up two-factor authentication on Intersect
- Recovery codes explained
- How 2FA login works
- Using recovery codes to log in
- How to reset two-factor authentication
- What happens if 2FA is not set up
- Best practices for keeping your account secure
- Need help with 2FA?
Overview
Intersect uses two-factor authentication (2FA) to protect user accounts against unauthorised access. In addition to your email address and password, 2FA requires a time-based verification code generated by an authenticator app on your mobile device.
This article explains how 2FA works on Intersect, how to set it up, how login verification functions, how recovery codes are used, and how to reset 2FA if needed.
Why Intersect uses authenticator-based 2FA
Email-based verification codes are increasingly vulnerable to phishing, inbox compromise, and interception. Authenticator apps generate time-sensitive codes locally on your device, which significantly reduces these risks.
Authenticator-based 2FA ensures that:
• Login approval requires physical access to your device
• Verification codes expire automatically
• Account security does not depend on email availability
• Users retain direct control over access credentials
This security enhancement applies to all Intersect users and will become mandatory once fully rolled out.
What you need before setting up 2FA
Before starting the setup process, ensure you have:
• Access to your Intersect account
• A mobile device
• An authenticator app installed, such as Google Authenticator, Microsoft Authenticator, or Authy
• A secure location to store recovery codes
How to set up two-factor authentication on Intersect
When you register, accept an invite, or log in after 2FA has been enabled, Intersect automatically redirects you to the 2FA setup screen.
During setup:
Intersect generates a unique authentication secret for your account
A QR code is displayed on screen
You scan the QR code using your authenticator app
The app begins generating six-digit verification codes
You enter the current code to confirm setup
Once confirmed, Intersect securely stores the authentication secret and enables 2FA protection on your account.
You cannot proceed until verification is successfully completed.
Recovery codes explained
After setup, Intersect generates eight unique recovery codes linked to your account.
Recovery codes are a fallback method used if you lose access to your authenticator app. Each recovery code:
• Can only be used once
• Is permanently invalidated after use
• Grants full login access
You must confirm that you have saved these codes before continuing. Intersect strongly recommends storing them in a password manager or another secure offline location.
How 2FA login works
After entering your email address and password, you are redirected to the 2FA verification screen.
You can authenticate by:
• Entering the six-digit code from your authenticator app, or
• Using an unused recovery code
If verification is successful, you are logged into your account.
You may optionally select “Remember this device for 30 days”. When enabled, Intersect reduces how often 2FA verification is required on that device. If not selected, 2FA verification is required on every login.
Using recovery codes to log in
If you no longer have access to your authenticator app, you can choose to authenticate using a recovery code.
When a recovery code is used:
• It is immediately deleted from your account
• Login access is granted
• The code cannot be reused
If your final recovery code is used, Intersect automatically redirects you to generate a new set of recovery codes to maintain account security.
How to reset two-factor authentication
Intersect provides a self-service option to reset 2FA from your account settings.
Resetting 2FA should only be used if:
• You have lost access to your authenticator app
• You are setting up a new device
• You are experiencing persistent technical issues
When 2FA is reset:
• All recovery codes are deleted
• The stored authentication secret is removed
• 2FA protection is temporarily disabled
On your next login, you will be required to complete the full 2FA setup process again, including scanning a new QR code and saving new recovery codes.
What happens if 2FA is not set up
Once 2FA is enforced across Intersect, users who have not completed setup will be blocked from accessing their accounts until authentication is configured.
This ensures consistent security standards across all users.
Best practices for keeping your account secure
To maintain strong account security:
• Store recovery codes securely and offline
• Never share recovery codes with anyone
• Protect your mobile device with a PIN or biometric lock
• Avoid installing authenticator apps on shared devices
• Reset 2FA immediately if your device is compromised
Need help with 2FA?
If you experience issues during setup, login, or recovery, contact Intersect support for assistance. For security reasons, additional identity verification may be required before changes are made to your account.
Was this article helpful?
That’s Great!
Thank you for your feedback
Sorry! We couldn't be helpful
Thank you for your feedback
Feedback sent
We appreciate your effort and will try to fix the article