Your Thryv account contains sensitive business and client information that needs to stay protected. Multi-factor authentication (MFA) adds a second layer of security to your login by requiring a verification code in addition to your password. Even if someone obtains your password, MFA prevents unauthorized access because the attacker would still need the verification code sent to your device. MFA is required for all Thryv accounts and cannot be disabled.

This article covers the following:

• Why Multi-Factor Authentication Protects Your Business
• How to Choose Your MFA Method
• How to Set Up MFA Using SMS Text Message
• How to Set Up MFA Using an External Authenticator App
• How to Use Remember This Device to Reduce Re-Authentication
• Compatible External Authenticator Apps
• Frequently Asked Questions

This article covers setting up and using multi-factor authentication for your Thryv account login. This article does not cover resetting your Thryv password. To reset your Thryv password, see Change or Reset Your Password in Thryv Business Center. This article does not cover managing staff login access or permissions. To learn how to manage staff access to your Thryv account, see Staff Permissions in Thryv Business Center.

Why Multi-Factor Authentication Protects Your Business

Multi-factor authentication protects your Thryv account by requiring two separate forms of verification before granting access: your password and a one-time verification code delivered to a device only you control. This means that a stolen or guessed password alone is not enough for an attacker to access your account. For businesses in regulated industries such as finance or healthcare, MFA also supports compliance with security requirements that mandate additional authentication controls beyond passwords. Because MFA is required for all Thryv accounts, the security protection is applied consistently across your business.

How to Choose Your MFA Method

When you log in to Thryv for the first time after MFA has been enabled on your account, Thryv will prompt you to set up a verification method before you can access your account. Two verification methods are available: SMS text message and an external authenticator app. Select the method that best fits how you work, SMS sends a code directly to your mobile phone, while an authenticator app generates codes without requiring a cellular signal or SMS delivery.

How to Set Up MFA Using SMS Text Message

SMS verification sends a six-digit code to your mobile phone each time you log in to Thryv. To set up SMS verification, enter the mobile phone number you want to use for MFA in the phone number field on the MFA setup screen. Use a mobile number that can receive SMS messages and that you have consistent access to, this number will be required every time you log in from a new or unrecognized device. After entering your phone number, click Continue.

After clicking Continue, Thryv will send a six-digit verification code to the mobile number you entered. Enter the six-digit code in the verification code field on the screen. If the code does not arrive, first confirm that the phone number displayed on screen is correct. If the phone number is incorrect, click Edit to return to the phone number field and update the number. If the phone number is correct but the code still has not arrived, click Resend to request a new code.

Once you enter the correct six-digit code, Thryv will verify your phone number and log you in to your account. On future logins, Thryv will send a new six-digit code to the same mobile number by SMS. You will be required to enter the code each time you log in from a new or unrecognized device.

How to Set Up MFA Using an External Authenticator App

An external authenticator app generates a six-digit code on your mobile device that refreshes every 30 seconds. Authenticator apps work without a cellular signal or SMS delivery, making them a reliable option if you have inconsistent mobile reception. Compatible authenticator apps include Google Authenticator, Microsoft Authenticator and Authy. To set up an authenticator app with your Thryv account, open your preferred authenticator app on your mobile device.

Thryv will display a QR code on the authenticator setup screen. In your authenticator app, add a new account by tapping the + icon in the lower-right corner of the app. Select Scan a QR Code to use your device camera to scan the QR code displayed on the Thryv setup screen. If your device camera cannot read the QR code, click Trouble Scanning on the Thryv setup screen to reveal a manual setup key. In your authenticator app, select Enter a Setup Key instead of Scan a QR Code, then type the setup key from the Thryv setup screen into your authenticator app.

After scanning the QR code or entering the setup key, your authenticator app will display a six-digit code for your Thryv account. Enter the six-digit code from your authenticator app into the verification code field on the Thryv setup screen. The code refreshes every 30 seconds, enter the code before it expires. Once Thryv verifies the code, your authenticator app is linked to your account and you will be logged in.

On future logins, open your authenticator app and enter the current six-digit code displayed for your Thryv account. A new code is required each time you log in from a new or unrecognized device. The code changes every 30 seconds, so enter the code promptly after opening the authenticator app.

How to Use Remember This Device to Reduce Re-Authentication

The Remember This Device for 30 Days option lets you skip the MFA verification step on a trusted device for 30 days after your initial login. The Remember This Device option is available for both SMS and authenticator app verification methods. To enable the option, check the Remember this device for 30 days checkbox on the verification code entry screen before submitting your six-digit code. After 30 days, Thryv will require MFA verification again on that device. If you log in from a different device, MFA verification is always required regardless of the Remember This Device setting on any other device.

Compatible External Authenticator Apps

Thryv MFA is compatible with any authenticator app that supports time-based one-time passwords (TOTP), including Google Authenticator, Microsoft Authenticator and Authy. If you have not yet installed an authenticator app, each of the following apps is available for iOS and Android and includes setup instructions on the app's support site:

• How to set up Google Authenticator on your mobile device 
• How to set up Microsoft Authenticator on your mobile device 
• How to add a new account to the Authy authenticator app 

Frequently Asked Questions

Can MFA be turned off or disabled for my Thryv account?

No. Multi-factor authentication is required for all Thryv accounts and cannot be disabled. MFA is enforced as a mandatory security measure to protect your business and client data.

What happens if I log in from a new device after enabling Remember This Device on another device?

The Remember This Device setting applies only to the specific device on which the checkbox was checked during login. Logging in from any other device, including a new phone, tablet, or computer, will always require MFA verification, regardless of the Remember This Device status on any other device.

Does MFA apply to all Thryv applications, including mobile?

Yes. MFA applies to all Thryv Platform applications, including the Thryv mobile app. The same verification method used for desktop login  (SMS or authenticator app) is also required when logging in on a mobile device.

How long does the six-digit MFA code remain valid before it expires?

For SMS verification, the six-digit code validity window is set by Thryv. If the code expires before you enter it, click Resend on the verification code entry screen to receive a new code. For authenticator app verification, the six-digit code refreshes automatically every 30 seconds. Enter the code from your authenticator app before the 30-second timer resets to avoid having to use the next code.