For AI agents: a documentation index is available at the root level at /llms.txt and /llms-full.txt. Append /llms.txt to any URL for a page-level index, or .md for the markdown version of any page.
Logo
Resources
Log inGet a demo
Get startedConnectorsAPI reference
Get startedConnectorsAPI reference
    • Overview
    • How it works
    • Quickstart
    • Use cases
  • Setup
    • Building an agent
    • Context layer for employees
    • Local development
  • Build
  • Secure
    • Security Gateway
    • Standard Entity Rules
    • Custom Regex Rules
    • Violations and alerts
    • Rule Tester
  • Observe
    • Tool Call Logs
    • API Request Logs
    • Audit Trail
    • Webhooks
    • Playground
  • Administer
    • Team and roles
    • Single sign-on
    • SCIM provisioning
    • Multi-factor authentication
    • Access Keys
    • Application Credentials
    • Billing and usage
  • Resources
    • Troubleshooting
    • FAQ

Get started

  • Overview
  • Introduction
  • Unified API
  • Linked Account
  • Merge Link
  • Use cases

Implementation

  • Sandboxes
  • SDKs
  • API access
  • Syncing data
  • Writing data
  • Data minimization
  • Supplemental data
  • Errors
  • Integration metadata

API reference

  • ATS
  • HRIS
  • Accounting
  • Ticketing
  • CRM
  • File Storage
  • Knowledge Base
  • Chat

Resources

  • Help Center
  • Merge.dev
  • Changelog
© Merge 2026Terms of usePrivacy policy
UnifiedAgent HandlerGateway
UnifiedAgent HandlerGateway
Resources
Log inGet a demo
On this page
  • Setting up MFA on your account
  • Requiring MFA org-wide
  • Admin reset
  • Common issues
  • Next
Administer

Multi-factor authentication

A second factor on every dashboard login.
Was this page helpful?
Previous

SCIM provisioning

Next

Access Keys

MFA adds a second factor (a TOTP code from an authenticator app) to dashboard logins. By default it’s optional per member. Most teams turn it on org-wide once they have a few people using the dashboard.

If your team uses SSO, MFA is usually enforced at the IdP rather than at Agent Handler - your IdP already requires the second factor before SSO completes, so layering MFA at Agent Handler too is redundant.

Setting up MFA on your account

Each member sets up their own. From Settings → Profile:

  1. Click Enable MFA.
  2. Scan the QR code with an authenticator app - 1Password, Google Authenticator, Authy, Microsoft Authenticator, anything that supports TOTP.
  3. Enter the 6-digit code the app shows.
  4. Save the recovery codes Agent Handler displays. These are the only way back in if you lose your authenticator. Store them somewhere durable - your password manager, not your laptop.

From the next login on, MFA is required for your account.

Requiring MFA org-wide

Admins can require MFA for everyone in the org at Settings → Organization → Security. Once on:

  • Existing members without MFA are forced to enroll on next login. The login flow won’t proceed until they finish enrollment.
  • New invitations include MFA enrollment as part of first login.
  • Members who already had MFA aren’t affected.

Turn this on once your team is small enough that a few minutes of friction per person is acceptable, or when your security review asks.

Admin reset

If a member loses their authenticator and their recovery codes, an admin can reset their MFA. From Settings → Members, click the member, then Reset MFA. The member can re-enroll on their next login.

Reset is logged in the Audit Trail - a record exists of who reset whose MFA and when.

Common issues

  • Codes always rejected. Check the device’s clock. TOTP codes are time-based; a clock more than ~30 seconds off the server will produce codes that look right but fail.
  • No QR code shown. Browser blocked the image, or the page errored. Refresh; if it still fails, contact support.
  • Lost recovery codes and authenticator. Ask an admin in your org to reset MFA from the member dashboard. If you’re the only admin, contact support - they’ll verify you’re the legitimate owner of the account before resetting.

Next

See plans, usage, and how to upgrade in Billing and usage.