MFA is no longer optional for anyone touching production data. EQQ ships with TOTP-based MFA compatible with Google Authenticator, Microsoft Authenticator, and Authy. Enrollment takes under a minute.

Enable MFA on your account

  1. Click your avatar → My Account.
  2. Open the Security section.
  3. Click Enable Two-Factor Authentication.
  4. Scan the QR code with your authenticator app.
  5. Enter the 6-digit code to confirm.
MFA enrollment shows a QR code and confirmation field.
MFA enrollment shows a QR code and confirmation field.

Organization-wide enforcement

A security admin can require MFA for every account under Security → Password Setting. Users who have not enrolled are walked through setup on their next sign-in.

Trusted devices

On devices you use daily, enter a Device Password at sign-in and check Remember this device. EQQ will still require MFA when you sign in from an unfamiliar machine - a good balance between friction and safety.

Lockout recovery

If a user loses their authenticator, a security admin can reset MFA under Security → Users → Reset MFA. The user re-enrolls on their next sign-in.

Try EQQ free. Spin up a free trial and run your first governed query today. Start Free Trial →

Key Terms

  • TOTP - Time-based One-Time Password - a 6-digit code that refreshes every 30 seconds, generated by an authenticator app.
  • QR code - Quick Response code - the scannable barcode used to transfer your TOTP secret into an authenticator app.
  • MFA - Multi-Factor Authentication - requiring a second proof of identity (the TOTP code) in addition to a password.