Two Factor Authentication

Two Factor Authentication (2FA) within ClubHouse Online will require a user to enter a passcode in addition to successfully authenticating to the club’s site with their username and password.

Log in to your Clubhouse Online website as an Administrator and click on the ‘Switch to Club Central’ link.
From Club Central, navigate to Company Management -> Login Configuration
Within the Two Factor Authentication section, check the box to Enable Two Factor Authentication.

Set the value for the Interval Between Multifactor Logins and click on Save.

The interval value is measured in the number days between Multi-Factor logins.

^Ex.
If the interval is set to 5 (days), after a user completes their initial Two Factor Authentication, they will be prompted to complete the process again 5 days from that date.

Allow User Opt Out

If a club would like to give users the option to opt-out from Two Factor Authentication, this can be enabled within the Two-Factor Authentication settings.

From within Club Central, navigate to Company Management -> Login Configuration -> Two-Factor Authentication.
Check the box next to Allow User Opt-Out and click on Save.

How to Opt-Out

There are two methods in which a user account can be opted out from Two-Factor Authentication which are as a Member or as an Administrator.

Member Opt-Out

A member will be provided the option to opt out/in during the following scenarios:

First Login after 2FA is enabled – If 2FA has been enabled after a member has completed registration on the website, they will be asked to complete the process and asked if they wish to continue or opt out.

From their Roster Profile – If the member has chosen to either continue utilizing 2FA or has opted out, they can modify their choice later by accessing their Roster profile. This option will be located at the bottom of their profile in the privacy section.

Administrator Opt-Out

An Administrator has the option to Opt-Out a member by completing the following steps:

Within Club Central, navigate to Users.
Click on the pencil icon to edit an intended user’s profile.
Under the Restrictions section of the user profile, uncheck the box for Multi-Factor Authentication Enabled and click on Save.

How a User Authenticates with Multi-Factor Logins Enabled

Once your site and user(s) are configured to use Two Factor Authentication, upon successfully authenticating to the club’s site by entering their Username and Password, they will be presented with a Passcode field above which a message will be displayed which reads

‘An email has been sent to the email address associated with your user account. Within it you will find a code which needs to be entered into the field below in order to successfully login.’

Below the passcode field, a message will be displayed which reads

‘The code provided to you will expire in 5 minutes.’

In addition, users will be provided with a ‘Resend’ button which will allow them to have a new passcode sent to their email address. This will be useful should they allow the first passcode to expire.

^Note: The passcode will be sent to the email address that is associated with the user account that is attempting to authenticate.

If a user attempts to change their password, users will be required to enter passcode to do so, if configured to utilize 2FA.

Items to Note

Mobile App Continuous Login vs (2FA) Interval Between MultiFactor Logins

If the Mobile App Login Configuration has the Allow Continuous Login option enabled with a specific number of day set for the duration and Two Factor Authentication is enabled with a set number of days for the Interval between Multifactor Logins options, the parameter that has the lower value will be enforced for both parameters.
^Ex.