1. Keycafe Help Centre
  2. Keycafe Enterprise Help Centre
  3. Account and Login

Account Security

Updated  

In this article:

 

Keycafe uses a number of protocols to ensure your data is protected. For information on the security measures that Keycafe implements visit our Security page. The security settings mentioned in this article affect only your account when it comes to login credentials and key pickups and drop offs.

A Note About Security and Key Management

While Keycafe takes steps to secure its software and hardware platforms, key management depends on customers to use the service properly, minimize error, and maintain vigilance. Nonetheless, it comes with risks. Keycafe SmartBoxes are not designed for maximum physical security. SmartBoxes in some rare cases have been targeted and thus should always be kept in a secure and monitored environment. Any keys you drop off should never be labeled with identifying address information. Even if you meet all of our recommended security guidelines, there are nonetheless inherent risks and those who will target the Keycafe service. Please see the Keycafe Terms for more information.

 

My Login 2FA

This setting requires the entry of a unique code that is sent to your mobile phone when you log in from any device. This setting is on by default to add further protection to your Keycafe account.

To control this security feature:

  1. Click the user dropdown at the top near the right side and select My Account
  2. Select Security.
  3. Toggle the My Login 2FA setting to enable or disable the requirement. We recommend that you keep this setting on.

2fa.jpg

 

My Key Pickups 2FA

Toggle it on to require anyone using your mobile number, access code, or QR code to also input a two-factor authentication code sent via SMS message to your mobile number.

Screen_Shot_2021-11-18_at_10.27.28_AM.png

 

Setting Your PIN

If the owner of the keys you are using has enabled 4 Digit PINs, you can set up your own PIN.

  1. Click the user dropdown at the top near the right side and select My Account.
  2. Select Security.
  3. In the Key Exchange section, enter a 4 Digit PIN and select Update.

Screen_Shot_2021-11-18_at_10.49.59_AM.png

Security Recommendation

Please note that for security purposes, we always recommend to keep two-factor authentication settings enabled. Turning off two-factor authentication for your key exchanges means that anyone who knows your mobile phone number or your visitor's mobile number will have access to your keys.

 

Resetting Your Password

If you have forgotten your password and cannot log into your Keycafe account, proceed with the following steps.

  1. Select Login from the top menu on the Keycafe homepage.
  2. Enter your account's email address.
  3. Select Forgot Password?
  4. Check your account's associated email address for an email with a password reset link.

Don't Have Access to Your Email?

If you do not have access to your account's original email address, contact our support team for help.

 

Changing Your Password

Strong Passwords

We recommend a password be at least 15 characters. Our minimum requirement is a password of at least 8 characters, and passwords under 15 characters must include one letter and one number.

In addition, we check passwords against a list of 100k common passwords, and don't allow any password on that list, even if it meets the requirements above.

  1. Click the user dropdown at the top near the right side and select My Account
  2. Select Security.
  3. In the Change Password section, enter your current password along with the new password.
  4. Select Confirm to save the change.

The next time you log into Keycafe, an SMS message with an authentication code will be sent to your mobile number. Type this code into the provided prompt.

 

Changing Your Login Method

There are two ways to log into Keycafe: using an email address and password, or using single sign-on with Google or Microsoft. You can switch your default method at any time.

  1. Click the user dropdown at the top near the right side and select My Account
  2. Select Security.
  3. Scroll down to the bottom and select the new sign-in method you'd like, then follow the prompts to set up your new login method.

Switching Between Google and Microsoft

If you are switching from Google sign-in to Microsoft, or vice-versa, you will need to first switch to email and password as an intermediate step. The same applies if you are switching between two different accounts with the same provider (Google or Microsoft).

Was this article helpful?
1 out of 1 found this helpful