Enforce two-step verification

If you’re an administrator of a domain on one of our Hushmail for Healthcare Growth plans, you can require all users on your domain to enable two-step verification. This helps keep your organization’s email accounts secure.

Once the feature is enabled, your users will have until the date you choose to set up two-step verification. After that date, anyone who hasn’t enabled it will be blocked from signing in until you request an extension for them.

How to enable enforced two-step verification

1. Sign in to your Hushmail Administrator account at https://secure.hushmail.com/mail
2. Send us an encrypted email to support@hushmail.com.
   • In your message, request that we enable enforced two-step verification for your domain.
   • Include the date you’d like enforcement to begin.
3. Once we receive your email, we’ll enable the feature on the date you requested and confirm when it’s set up.

Your users will then have until that date to turn on two-step verification.

Learn how to enable two-step verification ›

What happens after the enforcement date

If a user doesn’t enable two-step verification by your chosen date:

• They’ll be blocked from signing in to their account.
• When they try to sign in, they’ll see a message explaining that two-step verification is required.
• They’ll need to contact you, their administrator, to request an extension.

How to request an extension for a user

If one of your users misses the deadline:

1. Send us an encrypted email to support@hushmail.com from your Administrator account.

   In your message, include:

   • The username of the account that needs an extension.
   • A request to extend their two-step verification date so they can sign in and enable it.

Once we receive your request, we’ll extend the date and confirm when the user can sign in again.