Setup: MFA for Your White Label Admin Account

Why This Matters

Your white label admin sign-in gives you access to every customer account on your platform. Protecting it with MFA means that even if your password is ever compromised, no one can get in without your phone.

Before You Begin

  • You need a smartphone with an authenticator app installed, or a desktop password manager that supports authenticator codes such as 1Password or Bitwarden
  • Your MFA enrollment applies only to your white label admin sign-in — it is completely separate from any customer accounts you may own on the same platform

Step-by-Step Instructions

Step 1: Go to Your MFA Page

Sign in to your white label admin panel and navigate to the Multi-Factor Authentication page. You will see your current enrollment status under Your MFA.

Step 2: Set Your Admin Policy

In the White Label Admin Policy section, use the dropdown to choose how MFA applies to your admin sign-in:

  • OFF — MFA is not used. You sign in with just a password.
  • OPTIONAL — You may enroll if you choose.
  • ON — MFA is required. If you are not yet enrolled, you will be prompted to set it up on your next sign-in.

Click Save Policy when done.

Step 3: Enroll in MFA

Under Your MFA, click Re-enroll / Generate New Backup Codes. Follow the on-screen steps to scan the QR code with your authenticator app and verify your 6-digit code. Save your backup codes somewhere safe — they are shown once and cannot be retrieved later.

Step 4: Manage Trusted Devices

After signing in with MFA, you can check Remember this device to skip the code prompt for 30 days on that browser. Your trusted devices are listed in the Trusted devices section of your MFA page, showing when each was added, last used, and when it expires. Use the Revoke link to remove a single device or Revoke all devices to clear all trusted browsers at once.

How to Reset a Customer Owner's MFA

If a customer account owner is locked out of their account and cannot get in, you can reset their MFA from the customer account page in your admin panel.

  1. Open the customer account in your admin panel
  2. In the Account Tools section on the right, click Reset Owner MFA

💡 The Reset Owner MFA button is greyed out and shows "Owner not enrolled" when the account owner has not enrolled in MFA. A reset is only needed when the button is active.

After the reset, the owner will be prompted to re-enroll the next time they sign in.

Questions and Answers

Q: Does enrolling in MFA for my admin sign-in affect my customer accounts?

A: No. Your white label admin MFA enrollment is completely separate from any customer accounts on your platform. Each is managed independently.


Q: What if I lose my phone and have no backup codes?

A: This requires a system-level recovery. Contact support immediately — do not attempt to work around it.


Q: What does Revoke all devices do?

A: It immediately clears every trusted browser on your admin account, requiring a full MFA verification on the next sign-in from any device. Use this if you suspect your admin account has been accessed without your knowledge.


Q: The Reset Owner MFA button is greyed out. Why?

A: The button is only active when the account owner is enrolled in MFA. If it shows "Owner not enrolled" the owner is already signing in with just a password and no reset is needed.


Q: Can I reset a customer's team member MFA from my admin panel?

A: No. To reset a team member's MFA, use the Sign In As This User button to enter the customer account, then navigate to the team member's settings and click Reset This Member's MFA.

Guide Type: One-Time Setup Task

Estimated Time: 5 minutes