No one likes remembering passwords (or worse, resetting the ones they've forgotten). But, believe it or not, there's a reason so many vendors have strict password requirements, and it's not just vague concerns over security. In 2017, stolen or weak passwords were to blame for 81 percent of hacking-related breaches. And breaches are bad for business.
That's why we built OneAuth, a mobile app for multi-factor authentication (MFA) that helps you protect your account from password breaches. We've supported traditional two-factor authentication methods involving text messages, voice calls, and Google Authenticator for a while now. But with OneAuth, a mobile app exclusively for MFA, we've pushed the boundaries further to make authentication more convenient and more secure.
OneAuth lets you choose how you'd like to verify your identity. It offers four authentication modes:
- Biometric – Face ID (iPhone X) and Touch ID (fingerprint, in Android)
- Push notification – A push notification on your mobile phone when logging in
- QR scanning – Scan a QR code to verify your identity
- Time-based OTP – A numeric code, that lasts 30 seconds, to authenticate your login
If your mobile device happens to go offline, there's no need to worry—OneAuth still lets you use MFA through an offline token.
OneAuth also supports single sign-on for mobile devices. Now you can sign in to the OneAuth mobile app and skip signing in to each Zoho app individually, just like how it works on the web. OneAuth goes beyond authentication, by helping you manage your active sessions, restrict sign-in to your account, and set up safe locations.
Zoho One Security
If your organization is using Zoho One, it's easy to enforce strong password policies and multi-factor authentication across the board. You can also create security policies for specific user groups and choose your authentication modes to protect accounts with access to sensitive information.