Settings

Multi-Factor Authentication

Set up multi-factor authentication (MFA) to add an extra layer of security to your PetroBench account.

Multi-factor authentication (MFA) requires a second verification step when you sign in, protecting your account even if your password is compromised.

PetroBench supports authenticator apps that generate time-based one-time passwords (TOTP). If you don't already have one, download any of the following:

Enable MFA

1

Open security settings

Go to Settings > Security and click Enable MFA.

2

Scan the QR code

Open your authenticator app and scan the QR code displayed on screen. If you can't scan, click Can't scan? to reveal the setup key and enter it manually.

Save the setup key somewhere secure. You'll need it if you switch phones or lose access to your authenticator app.

3

Enter the verification code

Type the 6-digit code from your authenticator app and click Verify.

4

Save your recovery codes

PetroBench generates a set of one-time recovery codes. Download or copy these codes and store them in a safe place.

Each recovery code can only be used once. If you lose both your authenticator app and your recovery codes, you'll need to contact support to regain access.

MFA is now active. You'll be prompted for a code each time you sign in.

Sign In with MFA

  1. Enter your email and password as usual
  2. When prompted, open your authenticator app
  3. Enter the current 6-digit code
  4. Click Log In

Codes refresh every 30 seconds. If a code expires before you submit it, wait for the next one.

Use a Recovery Code

If you don't have access to your authenticator app:

  1. On the MFA verification screen, click Use a recovery code
  2. Enter one of your saved recovery codes
  3. Click Verify

Recovery codes are single-use. After signing in, set up MFA again on a new device or generate new recovery codes from Settings > Security.

Disable MFA

  1. Go to Settings > Security
  2. Click Disable MFA
  3. Enter your password to confirm
  4. Enter a code from your authenticator app
  5. Click Confirm

Regenerate Recovery Codes

If you've used most of your recovery codes or suspect they've been compromised:

  1. Go to Settings > Security
  2. Click Regenerate Recovery Codes
  3. Enter your password and a current MFA code
  4. Save the new codes - previous codes are immediately invalidated

Organization-Enforced MFA

Organization admins can require MFA for all members. When enforced:

  • Users without MFA are prompted to set it up at next sign-in
  • MFA cannot be disabled while the requirement is active
  • Admins manage this setting from Organization Settings > Security

If your organization enforces MFA, you won't see the option to disable it in your personal security settings.

Troubleshooting

Security

Manage your PetroBench account security. Change your password, enable two-factor authentication, and review active sessions.

App Settings

Configure default values for wells and simulations

On this page

Enable MFASign In with MFAUse a Recovery CodeDisable MFARegenerate Recovery CodesOrganization-Enforced MFATroubleshooting