Skip to main content

Two-Factor Authentication (2FA) in softgarden

This help article is about Two-Factor Authentication (2FA) – from setup to application in the login process.

Updated yesterday

Two-factor authentication (2FA) provides an additional layer of security for your softgarden account. Besides your password, you'll need a second proof at login – such as a code by email, a passkey, or a one-time password from an authenticator app. Here, you will find step-by-step instructions on how to activate 2FA and the options available to you.

1. Activate Two-Factor Authentication

  1. Log in to your account at my.softgarden.io.

  2. Go to your account dashboard and select the “Two-Factor Authentication” section.

  3. Click on “Activate Two-Factor Authentication”.

⚠️ Note: 2FA is currently not integrated with Single Sign-On (SSO). If you use SSO, your provider might offer its own 2FA/MFA options.

Also important: Unlike SSO, two-factor authentication cannot be mandatory for all accounts globally – each user must set it up individually.

2. Verify Email Address

To complete the setup:

  1. Click on “Verify Email Address”.

  2. You will receive an email from softgarden – open it and confirm the link.

From now on, you will receive a one-time code via email at each login, which you must enter in addition to your password.

Note on verification email:

The email to verify your address may end up in the spam folder or be intercepted by internal company email filters (e.g., security or firewall systems). The dispatch is reliably done on our side – the emails are sent correctly. However, it may happen that they arrive late in the customer's inbox.

If you don't receive the email promptly, please first check your spam folder. If it's not there either, contact your internal IT department to ensure that emails from softgarden are delivered correctly.

3. Logging in with Activated 2FA

After activation, your login process will look like this:

  1. Enter your username and password as usual.

  2. Then you'll be prompted to enter an authentication code – depending on the method chosen (email, passkey, or TOTP).

  3. Enter the code to log in successfully.

4. Set Up Additional Authentication Methods

For even more security, you can enable additional 2FA methods:

Method

Description

TOTP

Time-based one-time passwords from an authenticator app

Passkeys

Biometric login (e.g., fingerprint, facial scan) or device PIN

Before activating additional methods, you will be asked to verify your identity again.

5. Set Up TOTP (Time-based One-Time Passwords)

  1. In the “Two-Factor Authentication” section, choose Activate TOTP.

  2. A QR code for your account will be displayed.

  3. Scan this with an authenticator app like Google Authenticator, Authy, or a password manager.

  4. Alternatively, you can manually enter the TOTP data.

  5. Enter the generated code from the app to complete the setup.

🔐 TOTP codes are only valid for a few seconds, providing particularly high security.

6. Set Up Passkeys

  1. In the “Two-Factor Authentication” section, select the option Activate Passkey.

  2. A cryptographic key pair is created for your account.

  3. Depending on the device and browser, the passkey will be stored automatically – e.g., via fingerprint, facial scan, or screen lock.

  4. After completion, your passkey is ready for use.

✅ Passkeys eliminate the need to remember passwords and allow for a secure, fast login.

7. Login with Passkey

If you have set up a passkey:

  1. Select the option “Login with Passkey” (next to the SSO link) at login.

  2. Your browser will prompt you to use the stored passkey – e.g., via fingerprint or facial scan.

  3. After successful authentication, you will have access to your account.

8. Deactivate Two-Factor Authentication (2FA)

If you no longer wish to use two-factor authentication, you can deactivate it at any time:

  1. Log in to your account at my.softgarden.io.

  2. Go directly to your profile using this link: https://my.softgarden.io/de/profile.

  3. Scroll to the section “Two-Factor Authentication”.

  4. Disable the feature using the toggle button.

  5. Important: Don't forget to save the change so that it takes effect.

After deactivation, you will be able to log in again with just a username and password – without an additional security code.

❗If you no longer have access to your 2FA method (e.g., device loss), please contact our support team at [email protected] for assistance.

Conclusion: More Security for Your Account

With activated two-factor authentication, you effectively protect your softgarden account from unauthorized access. You have the choice between different methods according to your needs.

Related Articles
How do we proceed with a deletion request from an applicant?
Why can't I log in as an applicant anymore and why am I not receiving a password email?
How can I reset my password?
What methods does softgarden offer for integrating applicant data?
Why is only one user account per email address allowed in softgarden?
Did this answer your question?