Navigation

Getting Started

How-To Help Videos

Admin Settings

Business Hub

Customize Your Store

Customer Account Area

FAQs & Troubleshooting

Other Resources

  1. DecoNetwork Help
  2. Account
  3. Staff Accounts

How to Enable or Disable MFA for Individual Staff Accounts

Avatar
Lee Prazner
Updated
New feature added in V8.610.

You can enable or disable Multi-Factor Authentication (MFA) for individual staff accounts in DecoNetwork. This is useful when onboarding new team members, assisting staff with setup, or making exceptions to the global MFA policy while keeping the rest of your account secure.

In this article

Prerequisites

  • You must have administrator access to use this feature.

Why manage MFA per staff account

  • Onboard new team members gradually by enabling MFA once they are ready.
  • Temporarily exempt staff who have lost access to their authenticator app.
  • Make exceptions for shared or kiosk-style devices where MFA is not practical.
  • Override the global MFA policy for specific high-risk or low-risk roles.

Step 1: Open the Staff Accounts page

  1. Log into your DecoNetwork Website.

  2. Browse to AdminAccount.

    Admin Button.png

    AccountMenuItem.png

  3. Select Staff Accounts.

    Staff_Accounts_Menu_Item.png

    The Staff Accounts page is loaded.

    Staff Accounts Page.png

    Click the image to enlarge.

    Staff Accounts Page.png

Step 2: Open the staff member’s profile

  1. Click the name of the staff member whose MFA settings you want to change.

  2. In the staff account settings panel, locate the “Require multi-factor authentication when logging in” checkbox.

    MFA Setting.png
    • Tick the checkbox to require MFA for that individual account.
    • Untick the checkbox to disable MFA for that account.
  • This setting overrides the global MFA status.
  • If global MFA is enabled, turning it off for a specific staff account will exempt that user from MFA login.
  • The staff member will be prompted to set up MFA the next time they log in if it is enabled.

Step 4: Save your changes

  1. Click Save to apply your changes.

Best-Practice Tips

  • Keep MFA enabled for staff with access to financial data, production, or system settings.
  • Use per-account MFA disabling only as a temporary exception while resolving access issues.
  • After helping a staff member recover access, re-enable MFA to maintain account security.
  • Document any long-term exemptions so your team understands why those accounts differ from the global policy.

Troubleshooting

  • The staff member is still being asked for MFA after I disabled it.
    Confirm that you clicked Save after changing the setting and ask the staff member to log out and log back in (or try a private/incognito browser window).
  • The staff member is not prompted to set up MFA after I enabled it.
    Verify that the checkbox is ticked and saved. Ensure they are logging in with the same email address shown on the staff account.

FAQs

Does this setting affect other staff accounts?

No. The “Require multi-factor authentication when logging in” checkbox only affects the single staff account you are editing.

What happens if global MFA is turned off later?

If global MFA is turned off, users who had MFA required individually will no longer be forced to use MFA at login, unless global MFA is re-enabled.

Should I disable MFA permanently for some staff?

Where possible, keep MFA enabled for all users. Long-term exemptions should be limited to low-risk roles or shared kiosk devices and reviewed regularly.

Additional Resources

Still have questions? Use the Search Tool at the top of the page to find more related guides. Need help? Click the icon to submit a support ticket—our Client Services team is ready to assist!

Related articles

Comments

0 comments

Please sign in to leave a comment.