Authentication & Security
Vantage provides multiple layers of authentication to secure access to your account. This page covers all available security features and how to configure them.
Sign-In Methods
Email & Password
The default authentication method. Users sign in with the email and password they provided during account registration.
- Navigate to the Sign-In page.
- Enter your email and password.
- Click "Sign In".
Passkeys (Biometric Authentication)
Passkeys allow you to sign in using biometric methods like Face ID or Touch ID, or hardware security keys — without entering a password.
Setting Up a Passkey
- Go to Settings → Account → Security.
- Scroll to the Passkeys section.
- Click "Add a passkey".
- Enter a name for the device (e.g., "iPhone", "MacBook").
- Complete the biometric prompt from your browser (Face ID, Touch ID, or security key).
- The passkey is registered and appears in your passkey list.
Managing Passkeys
- Rename — Click the edit icon on any registered passkey to update its name.
- Delete — Click the delete icon to remove a passkey.
- Each passkey shows the device name, whether it's backed up, the creation date, and last used date.
Two-Factor Authentication (2FA)
Two-factor authentication adds a second verification step during sign-in, significantly improving account security.
Available Methods
| Method | How It Works |
|---|---|
| A verification code is sent to your registered email address. Enter it during sign-in. | |
| Authenticator App (TOTP) | Use an app like Google Authenticator or Authy to generate time-based one-time passwords. |
Enabling 2FA
- Go to Settings → Account → Security.
- Find the Two-Factor Authentication section.
- Choose your method:
Email Verification
- Click "Email" to enable email-based 2FA.
- On your next sign-in, you'll be prompted to enter a code sent to your email.
Authenticator App (TOTP)
- Click "Authenticator App".
- A QR code appears on screen.
- Scan the QR code with your authenticator app (Google Authenticator, Authy, etc.).
- Enter the 6-digit verification code from your app to confirm setup.
- TOTP-based 2FA is now active.
Disabling 2FA
- Go to Settings → Account → Security.
- Click the option to disable 2FA.
- Enter your account password to confirm.
- 2FA is deactivated.
Note: Disabling 2FA requires password confirmation as a security measure.
Password Management
Changing Your Password
- Go to Settings → Account → Security.
- In the Change Password section:
- Enter your current password.
- Enter your new password (minimum 8 characters).
- Confirm the new password.
- Click "Update Password".
Forgot Password
- On the sign-in page, click "Forgot password?".
- Enter your registered email address.
- Check your email for a password reset link.
- Click the link and set a new password.
Account Activity & Logs
Monitor your account security by reviewing activity logs:
- Go to Settings → Account → Logs.
- View your login history with timestamps and IP addresses.
- Review security events (password changes, 2FA changes).
Best Practices
- Enable 2FA on all accounts, especially admin accounts
- Use passkeys for the most secure and convenient sign-in experience
- Use strong passwords — at least 8 characters with a mix of letters, numbers, and symbols
- Review activity logs regularly for any unauthorized access
- Set up domain restrictions in Organization Settings to control which integrations are allowed
Troubleshooting
| Issue | Solution |
|---|---|
| Can't sign in | Verify your email and password are correct. Try the "Forgot password?" flow. |
| 2FA code not working | Ensure your authenticator app's time is synced. For email codes, check your spam folder. |
| Passkey prompt not appearing | Make sure your browser supports WebAuthn and biometric authentication is enabled on your device. |
| Locked out of 2FA | Contact your organization admin or support to reset 2FA on your account. |
| Password reset email not received | Check spam/junk folders. Verify the email address matches your account. |