×

Hupspot 2FA security setup guide

/ CRM, Hubspot / By

Configure allowed 2FA methods for users in Hubspot

Managing two-factor authentication (2FA) options in Hubspot is essential for keeping user accounts secure while maintaining control over which login methods are allowed in your organization.

This guide explains how super admins can configure allowed 2FA methods, what each method means, and how these settings affect users who log in to the platform.

Understanding 2FA methods in Hubspot

Hubspot supports multiple two-factor authentication methods that add an extra layer of protection beyond a standard username and password.

The available methods you can control include:

  • SMS authentication: Users receive a verification code via text message.
  • Email authentication: Users receive a one-time code or link by email.
  • Authenticator app: Time-based one-time codes from an app such as Google Authenticator or similar tools.
  • Security keys (if applicable): Physical devices used for strong authentication, depending on current platform support.

As a super admin, you can decide which of these 2FA methods users are allowed to set up and use when signing in to their accounts.

Requirements to manage Hubspot 2FA settings

To configure 2FA options for your team, you must meet the following requirements:

  • Have Super admin permissions in your Hubspot account.
  • Be able to access the account-level security or login settings.
  • Ensure your own account 2FA is properly configured, if required by your organization.

If you do not see the settings described in this article in your Hubspot portal, confirm that you are signed in as a super admin or contact another admin for assistance.

How to open the Hubspot security settings

Follow these steps to access the account security area where you can manage allowed 2FA login methods.

  1. Sign in to your Hubspot account using your existing credentials.
  2. In the main navigation bar, click your account name or profile picture.
  3. Select Settings from the dropdown menu.
  4. In the left sidebar menu, locate and click the Security or Account Security section, depending on your interface version.
  5. Within the security page, find the area labeled something like Two-factor authentication, Login security, or 2FA settings.

This section is where you control which two-factor authentication methods users are allowed to configure and use.

Configure which 2FA methods Hubspot users can use

Once you are on the security page, you can select which 2FA methods are permitted across your organization.

Step-by-step: choose allowed Hubspot 2FA options

  1. Locate the Allowed 2FA methods or similar configuration block.
  2. You will see one or more checkboxes or toggles for each method, for example:
    • Allow SMS two-factor authentication
    • Allow Email two-factor authentication
    • Allow Authenticator app two-factor authentication
  3. Select or deselect each option to match your company’s security policy.
  4. Click Save or Apply to confirm your new settings.

After you save your changes, Hubspot will enforce these choices whenever users set up or use two-factor authentication on their individual accounts.

How settings affect existing Hubspot users

When you change allowed 2FA methods, the impact on users depends on what they already have configured:

  • If a method remains allowed, users can continue to log in with that method as usual.
  • If a method is disabled, users may need to set up another allowed method to keep access secure.
  • Users who have not yet set up 2FA will only see the methods that you have allowed when they go through the setup process.

Communicate any policy changes in advance so your team understands why certain methods are no longer available in Hubspot and what they should do next.

Security best practices for Hubspot 2FA

When deciding which two-factor authentication methods to permit, consider these security and usability guidelines:

  • Prefer app-based codes or hardware keys where possible, as they are generally more secure than SMS or email.
  • Limit SMS and email 2FA if your organization handles sensitive data and needs stronger protections against interception.
  • Require at least one 2FA method for all super admins and high-privilege users.
  • Document your policy and make it part of your onboarding and security training process.

Regularly review your company’s security posture and update the allowed methods in Hubspot as standards and threats evolve.

Troubleshooting common Hubspot 2FA issues

When you adjust 2FA methods, some users may encounter login issues. Here are common scenarios and how to respond:

  • User cannot access their 2FA device: Use account recovery processes, backup codes, or admin-assisted reset options, according to your security policy.
  • Previously used 2FA method is now disabled: Instruct the user to sign in with available recovery options, then configure one of the currently allowed methods.
  • User never set up 2FA: Share step-by-step instructions and explain which Hubspot methods your organization supports.

If issues persist, verify that the account-level settings match your intended configuration, and confirm that the user is following the most recent documentation and prompts inside Hubspot.

Where to find official Hubspot documentation

For the most accurate and up-to-date instructions, always consult the official documentation from the platform. You can review the original guidance on configuring allowed 2FA methods for users directly in the Hubspot knowledge base: Configure allowed 2FA methods for users.

This official resource may include interface screenshots, updated option names, and additional details that supplement the overview provided in this article.

Improve your overall Hubspot security strategy

Configuring allowed two-factor authentication methods is only one piece of a broader security strategy. Consider pairing these settings with:

  • Strong password policies and password manager recommendations.
  • Regular permission audits for Hubspot users and teams.
  • Clear policies for offboarding and access removal.
  • Monitoring sign-in alerts and unusual activity reports.

If you need help designing a complete security and optimization strategy around your marketing and CRM platform, you can find specialized consulting and implementation services at Consultevo.

Next steps for admins using Hubspot

To put this guide into practice, follow these action items:

  1. Review your organization’s security requirements and risk tolerance.
  2. Decide which 2FA methods you want to allow in your Hubspot account.
  3. Update the settings in the security area as a super admin.
  4. Notify your users about the changes and provide setup instructions.
  5. Revisit these settings periodically to ensure they still align with your security policies.

By thoughtfully configuring your allowed 2FA methods, you help ensure that your Hubspot environment remains both secure and easy for your team to use.

Need Help With Hubspot?

If you want expert help building, automating, or scaling your Hubspot , work with ConsultEvo, a team who has a decade of Hubspot experience.

Scale Hubspot

“`

Verified by MonsterInsights