> ## Documentation Index
> Fetch the complete documentation index at: https://docs.aversure.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Enforced two-factor authentication

> Requiring SMS-based two-factor authentication for data room users

As an administrator, you can require some users of a data room to be verified with a further authentication step before accessing the data room. Enforced two-factor authentication requires the user to enter a six-digit one-time code that was sent to the user's mobile device using SMS.

<Note>Enforced two-factor authentication cannot be enabled for the administrators of a data room, but they may employ user-enabled two-factor authentication.</Note>

### Enabling at data room creation

1. Tick the **Enable enforced two-factor authentication** checkbox in the **Create new data room** dialog.
   <img alt="Enable enforced two-factor authentication at data room creation" src="https://mintcdn.com/aversure/lb03a4fdBe_Y4m_o/images/user-rights/2fa-enable-at-creation.png?fit=max&auto=format&n=lb03a4fdBe_Y4m_o&q=85&s=ad9aa5dd545eb275aeb3caaf19bc1bdc" width="50%" className="border rounded-md" data-path="images/user-rights/2fa-enable-at-creation.png" />

### Enabling for an existing data room

1. In the **Administration Interface**, go to the **Data Rooms** page.

2. Click on **Edit** for the data room in question.

3. Click on **Edit settings**.

4. Tick the **Enable enforced two-factor authentication** checkbox.

5. Click on **Save**.
   <img alt="Enable enforced two-factor authentication for an existing data room" src="https://mintcdn.com/aversure/lb03a4fdBe_Y4m_o/images/user-rights/2fa-enable-for-existing.png?fit=max&auto=format&n=lb03a4fdBe_Y4m_o&q=85&s=2ba6e84dc6d6fd120d60f3a3d84917b5" width="70%" className="border rounded-md" data-path="images/user-rights/2fa-enable-for-existing.png" />

### Adding enforced two-factor authentication for a user

1. In the **Administration Interface**, go to the **User Rights** page.

2. Select the **Data room** in the drop-down box in the header.

3. Select the **User group** in the next drop-down box.

4. Once the user has been invited to the data room, click on the **Edit** button in the column *Two-factor phone number*.
   <img alt="Two factor phone number entry in user rights" src="https://mintcdn.com/aversure/mcWiwZDLpMG_Tkom/images/user-rights/two-factor-phone-number-entry.png?fit=max&auto=format&n=mcWiwZDLpMG_Tkom&q=85&s=7d470614c5bf5f74765f70c0717683d6" width="100%" className="border rounded-md" data-path="images/user-rights/two-factor-phone-number-entry.png" />

5. Enter the phone number in full international format (e.g. +4670123456789) and click on **Save**. Please note that the phone number needs to be able to receive text messages.
   <img alt="Edit two factor phone number" src="https://mintcdn.com/aversure/mcWiwZDLpMG_Tkom/images/user-rights/edit-two-factor-phone-number.png?fit=max&auto=format&n=mcWiwZDLpMG_Tkom&q=85&s=1ae3495936be412b2a753283cd0159a8" width="50%" className="border rounded-md" data-path="images/user-rights/edit-two-factor-phone-number.png" />

### Removing two-factor authentication for a user

1. In the **Administration Interface**, go to the **User Rights** page.

2. Select the **Data room** in the drop-down box in the header.

3. Select the **User group** in the next drop-down box.

4. Click the **Edit** button in the **Two-factor phone number** column.

5. Clear the phone number field and click on **Save** to confirm.
   <img alt="Removing two-factor authentication for a user" src="https://mintcdn.com/aversure/lb03a4fdBe_Y4m_o/images/user-rights/2fa-remove-for-user.png?fit=max&auto=format&n=lb03a4fdBe_Y4m_o&q=85&s=6519fbaebedc44f68dad0a2187a583be" width="50%" className="border rounded-md" data-path="images/user-rights/2fa-remove-for-user.png" />

## User-enabled two-factor authentication

Users may also [enable two-factor authentication](/accessing-the-service/password-authentication#two-factor-authentication) for their accounts.