Two-Factor Authentication in StaffCounter

Browser-Based Device Verification

This section explains how StaffCounter.net secures your account using browser-based digital fingerprint verification. This method serves as a full alternative to traditional two-factor authentication (2FA).

During login, the system checks two factors: 1) your password and 2) your browser’s unique digital fingerprint. StaffCounter also maintains a record of all devices — computers, smartphones, and tablets — that have accessed your account. You can view this list under My Profile → “Connected Devices” tab.

To enable device control:

  1. Go to My Profile
  2. Enable the option “Disable new devices to access this account”

Note: Once this option is enabled, you will no longer be able to access your account from new browsers or devices without explicit approval. Any such attempt will trigger an email notification, allowing you to grant access with a single click.

Google Authenticator Integration

StaffCounter supports Google Authenticator for enhanced account security. This feature is available across all subscription plans and on-premise versions of StaffCounter. Two-factor authentication helps protect against various threats, including password theft and unauthorized access via stolen cookies or session data.

Even if someone gains access to your email and resets your password, they won’t be able to log in without the one-time code generated by Google Authenticator on your smartphone.

How to Set Up Google Authenticator

  1. In the StaffCounter dashboard, click your profile name in the top-right corner and go to the profile section.
  2. Click on the “Security” link.
  3. In the Security section, locate the “Google Authenticator” group and click “Use now”.
  4. A setup window with a QR code will appear.
  5. Install the Google Authenticator app on your smartphone, create a new profile, and scan the QR code.
  6. Enter the one-time password displayed in the app into the field provided.
  7. Click “Continue”.

After setup, each login will require a 6-digit one-time password generated by the app. The code changes every 30 seconds. You can choose whether 2FA applies to every login or only when logging in from new devices.

Disabling Two-Factor Authentication

To turn off Google Authenticator:

  1. Go to your profile page
  2. In the Google Authenticator section, click “Turn off”

Important Note for End-to-End Encrypted Accounts

For End-to-End Encrypted accounts, the Google Authenticator record name is partially encrypted. To rename it, use the “Edit” function inside the Google Authenticator app.

In future updates, additional 2FA methods will be added, including smartphone push notifications and FIDO U2F hardware key fobs.