How do I manage two-factor authentication?
Last updated: May 25, 2026
As an admin, you can choose which 2FA methods are available to users in your organisation either Authenticator App, Email OTP, or both.
Disabling the Authenticator App (Email OTP Only)
If you disable the Authenticator App option, your users will log in using a one-time code sent to their email instead.
What happens to existing users:
Currently logged in — No immediate change. They stay logged in until their session ends.
Logging in after the change — They will be prompted to verify via email OTP automatically.
No action needed from users — They do not need to re-validate their email or change any settings.
Re-enabling the Authenticator App
If you decide to turn the Authenticator App back on, be aware of the following:
Users who previously set up the Authenticator App must use the exact same device they originally enrolled with.
They cannot set up a new device as a replacement , the original enrollment is tied to that device.
If a user no longer has access to their original device, a manual reset is required. Please contact Ovida support to action this.
Quick Reference
Situation | Outcome |
|---|---|
User is logged in when Authenticator is disabled | No change until they log out |
User logs in after Authenticator is disabled | Prompted for email OTP automatically |
User needs to re-enrol Authenticator on a new device | Not possible — contact support for a manual reset |
User re-enables Authenticator on original device | Works as normal |
Need help with your organisation's 2FA settings? Contact the Ovida support team through the Help Centre.