ProConnect HelpIntuit HelpIntuit

Safeguarding your online account with two-factor authentication

by Intuit11 Updated 1 month ago

Your finances are a serious business. Passwords aren't as secure as they used to be, and if someone gets your password, they can access your account and make unauthorized changes. That’s why we require periodic multi-factor authentication and will ask you to enter a code. That way, we can make sure it's really you and keep your information secure.

Beginning in January 2022, the IRS is upgrading the recommendation for login security standards for protecting taxpayer information. 2-Factor Authentication (2-FA), also known as two-step verification, will now be the recommended default software login standard for greater login security.  2-Factor authentication will be required in tax year ’24.  While it is not required for tax year 23, the IRS and Intuit strongly recommend that all members of your firm use 2-FA starting this year to ensure the greatest possible security. This optional security function requires multi-factor authentication every time you sign in. This setting doesn't control the automatic multi-factor authentication that triggers when you sign in from a new device or if your cached sign-in has expired.

How do I turn additional two-step verification on or off?

  1. Sign in to your Intuit Account using your user ID and password.
  2. Select Sign in & Security.
  3. Under Two-step verification, select Turn on.
  4. Choose your verification method and select the Turn on button.
  5. Enter your password to confirm your choice.
    • When you first turn on two-step verification, the only options you'll have are Text Message or Voice Call. Once two-step verification is on you can change your choice to Text Message, Voice Call, or Google Authenticator.

What are the differences in the verification choices? 

  • Text message — Confirm your password and choose Turn on text message verification (you'll receive a 6-digit pin to enter). This requires SMS Text capability on your mobile phone. Note: Charges from your mobile phone carrier may apply.  Click here for more information.
  • Voice call verification—Enter the code you receive from the automated phone call and choose Continue (useful if you don't have reliable mobile phone reception or must use a landline).  Click here for more information.
  • Google Authenticator—If you are unable to receive SMS Text messaging, you can use Google Authenticator, which uses internet connectivity to receive the 6-digit code on your mobile phone instead of SMS Text (useful if you are in a location that doesn't use the SMS protocol or cell coverage isn't reliable and Wi-Fi is available).
    • To set up  Google Authenticator, select the Text message option again, then select “Turn On Authenticator app” near the bottom. Install the app on your phone following the on-screen instructions to link to Intuit authentication. 
  • Passkeys are encrypted digital keys that are more secure than passwords or one-time passcodes, because they're stored on your device and never shared with a website or app. Also, passkeys can't be guessed, so they’re resistant to phishing attacks. Click Here for more information.

Does everyone in the firm need to turn on two-step verification?

It's important that all users in your firm opt-in for 2-FA, as it only takes one vulnerable login ID to allow a hacker access to your firm’s confidential data.  Upon opting in, 2-FA will apply to all Intuit products using your associated login.

What is the difference between multi-factor authentication and two-step verification?

Multi-factor authentication is automatic for everyone. This will require you to enter a verification code when you sign in from a new computer, or periodically to make sure it's still you. Two-step verification is an optional level of security that can be turned on and requires a verification code each time you sign in.

Why do I have to take all these steps to get into my account?

We've increased the number of steps to access your account because of the increase in identity theft and fraudulent tax filings. You entrust us with protecting sensitive data, and we take that seriously. Our customers' privacy and security are our top priorities.

Is my account safe?

As an industry leader, Intuit is continuing to work in concert with the IRS, states, and industry to further strengthen the American tax system and decrease tax fraud on several fronts. The addition of features like stronger passwords, notifications, and MFA to our Professional Tax products is one of the actions we're taking to protect customers' information and combat tax fraud.

Tax fraud is constantly evolving and we'll evolve with it. We always recommend that customers take precautions to protect their identity. It's important that users not only create strong passwords but, more importantly, create unique passwords for each of their accounts.

Related topics

Lacerte Tax 2017Lacerte Tax 2018Lacerte Tax 2019Lacerte Tax 2020Lacerte Tax 2021Lacerte Tax 2022Lacerte Tax 2023ProSeries Basic 2017ProSeries Basic 2018ProSeries Basic 2019ProSeries Basic 2020ProSeries Professional 2017ProSeries Professional 2018ProSeries Professional 2019ProSeries Professional 2020

Sign in now for personalized help

Ask questions, get answers, and join our large community of Intuit Accountants users.

More like this

Dynamic AdsDynamic Ads