Securing your account: 2FA and passkey login

Securing your Zapini account

Your account holds customer conversations and data, so it's worth strengthening its security. Zapini offers two powerful features: two-factor authentication (2FA) and passkey (WebAuthn) login. They work alongside your password.

What is two-factor authentication (2FA)

With 2FA enabled, in addition to your password you need to enter a temporary code generated by an authenticator app. Even if someone discovers your password, they can't get in without the code.

How to enable 2FA

1. Open Account settings and go to the security area.
2. Turn on two-factor authentication.
3. Scan the QR Code with an authenticator app on your phone.
4. Enter the generated code to confirm activation.

💡 Tip: store your recovery codes somewhere safe. They let you access the account if you lose the device with the authenticator app.

What is passkey (WebAuthn) login

A passkey is a passwordless login method that uses your device's features, such as fingerprint, face recognition, or your computer unlock. It's fast and resistant to phishing. In Zapini, the passkey is an additional method: your password and 2FA keep working.

How to register a passkey

1. Go to the security area in account settings.
2. Choose to register a new passkey.
3. Follow your browser or system prompts to confirm with biometrics or device unlock.
4. The passkey is registered and ready for your next login.

Signing in with a passkey

On the login screen, choose to sign in with a passkey. When you use the passkey, login completes quickly and securely. The passkey is tied to the Zapini domain, providing protection against fake pages.

Security best practices

• Use a strong, unique password for Zapini.
• Enable 2FA as soon as possible.
• Register a passkey for fast, secure login.
• Periodically review audit logs and team users.

With 2FA and a passkey active, your account is far better protected against unauthorized access.