Two-Factor Authentication, also known as 2FA, is an extra layer of protection for you to use to ensure the security of your Online Services account beyond just your email address and password. This could be entering a code sent to you by text, or on an authenticator app.

When you have an employer that enables 2FA for Sage HR, you use 2FA after you enter your login details for your Sage HR company. You'll be prompted to enter a code to verify it's you.

If your employer enables 2FA for you in their settings, you have to use it until they remove it. If this is an issue, you must raise this with your employer.

They may be able to remove access for individual people, but that is at their discretion, and also may depend on their Sage HR setup.

You're prompted to set up 2FA the first time you log in after your employer enables it for their company.

No, if you want 2FA switched off you have to discuss this with your employer, as it is controlled by them.

To reset your 2FA, we advise you to contact your employer.

They can confirm whether they can reset it for you using their Sage HR admin settings. If your employer can reset it, you'll be prompted to set up 2FA again the next time you log in to Sage HR.

If they can't reset it, they can confirm whether you need to into account.sso.sage.com, click 2-Factor Authentication, then remove your device for 2FA so you can set it up again.

When you set up 2FA you're asked to note down a 24-digit code:

This code is for you to use if you don't receive a one-time passcode. Whether this is because you don't have access to your phone or you don't receive a text. If you lose this recovery code, your employer has to reset your 2FA so you set up 2FA again and not down your new recovery code.

You need the phone 2FA was set up on to receive the one-time passcode to log in. You can receive this using an authenticator app installed on your phone or by text or call.

If you don't have access to your phone, you can log in using your recovery code that you're asked to note down and keep safe when you first set up your 2FA.

If you lose this recovery code, you can log in using your recovery method, such as an alternative email address or phone number. If you never set this up then contact your employer so they can check with Sge support on how to reset your 2FA.

If you need to set up 2FA on your new phone, your employer may need to reset 2FA for you. You can then set up 2FA again the next time you log in to access your payslips.

If they can't reset it, they can confirm whether you need to into account.sso.sage.com, click 2-Factor Authentication, then remove your device for 2FA so you can set it up again on a new device.

If your code isn't working use your recovery code. Alternatively, contact your employer who can reset your 2FA.

Check their signal and wait at least 10 minutes. If you still don't get a text you can log in using the recovery code that you're asked to note down and keep safe when they first set up your 2FA.

If you lose this recovery code, you need to have your 2FA reset.

One of your employers may not have 2FA enabled, but it is possible that you used the same email address to access another current or ex-employer on Online Services. If that employer has 2FA enabled, you're required to use it to access any company on Online Services until one of your employers removes it.

It may also be because you use your Sage account for another Sage product which requires 2FA, which then applies to all other places you log in with that Sage account.

Authenticator apps are mobile applications for smartphones to help you securely verify your identity, so only you or the people you trust can access apps and data.

There are different authenticator apps to choose from. Google and Microsoft have their own authenticator apps, but you can go to Google Play or the Apple App Store and find one that works for you.