LEASEORA
Home / Support Center / Account Settings / Security Settings

Security Settings

6 min read Last updated: July 8, 2023

Overview

Protecting your Leaseora account is essential, especially when it contains sensitive property and financial information. This guide explains how to manage your security settings to keep your account safe from unauthorized access and potential threats.

Security Notice: Leaseora will never ask for your password via email, phone, or text message. Be cautious of phishing attempts and always access your account directly through the official website or app.

Accessing Security Settings

To access your security settings:

  1. Click on your profile picture or initials in the top-right corner of any page.
  2. Select "Settings" from the dropdown menu.
  3. Click on "Security" in the left sidebar menu.

Password Management

Changing Your Password

It's recommended to change your password regularly for enhanced security:

  1. Navigate to the "Password" section in Security Settings.
  2. Enter your current password.
  3. Enter your new password (must meet the requirements below).
  4. Confirm your new password.
  5. Click "Update Password".

Password Requirements

For security reasons, your password must:

  • Be at least 10 characters long
  • Include at least one uppercase letter
  • Include at least one lowercase letter
  • Include at least one number
  • Include at least one special character (e.g., !@#$%^&*)
  • Not be one of your previously used passwords
  • Not contain common words or easily guessable information

Pro Tip: Consider using a password manager to generate and store strong, unique passwords for all your accounts. This helps prevent security breaches if one of your accounts is compromised.

Password Reset

If you've forgotten your password:

  1. Click "Forgot Password?" on the login page.
  2. Enter the email address associated with your account.
  3. Check your email for a password reset link (valid for 30 minutes).
  4. Click the link and follow the instructions to create a new password.

Two-Factor Authentication (2FA)

Two-factor authentication adds an extra layer of security by requiring a second verification step when logging in.

Enabling Two-Factor Authentication

To set up 2FA:

  1. Navigate to the "Two-Factor Authentication" section in Security Settings.
  2. Click "Enable Two-Factor Authentication".
  3. Choose your preferred 2FA method:
    • Authenticator App (recommended)
    • SMS Verification
    • Email Verification
  4. Follow the setup instructions for your chosen method.
  5. Verify the setup by entering a code when prompted.
  6. Save your backup codes in a secure location (these allow you to access your account if you lose access to your 2FA device).

Using an Authenticator App

For the most secure 2FA experience, we recommend using an authenticator app:

  1. Download an authenticator app on your mobile device (e.g., Google Authenticator, Microsoft Authenticator, Authy).
  2. In Leaseora's 2FA settings, select "Authenticator App".
  3. Scan the QR code with your authenticator app or enter the provided key manually.
  4. Enter the 6-digit code from your authenticator app to verify the setup.

Important: Store your backup codes in a secure location. If you lose access to your authenticator app or phone, these codes will be the only way to regain access to your account without contacting support.

Login History and Active Sessions

Viewing Login History

To review your recent account activity:

  1. Navigate to the "Login History" section in Security Settings.
  2. Review the list of recent logins, which includes:
    • Date and time of login
    • Device type and browser
    • IP address
    • Location (approximate)
    • Login status (successful or failed)

If you notice any suspicious activity, such as logins from unfamiliar locations or devices, immediately change your password and contact support.

Managing Active Sessions

You can view and terminate active sessions on your account:

  1. Navigate to the "Active Sessions" section in Security Settings.
  2. Review the list of devices currently logged into your account.
  3. Click "Sign Out" next to any session you want to terminate.
  4. Alternatively, click "Sign Out All Other Devices" to terminate all sessions except your current one.

Account Recovery Options

Setting up recovery options ensures you can regain access to your account if you're locked out:

  1. Navigate to the "Account Recovery" section in Security Settings.
  2. Set up or update your recovery options:
    • Recovery email address
    • Recovery phone number
    • Security questions (select and answer three questions)
  3. Click "Save Recovery Options".

Security Notifications

Configure when and how you receive security alerts:

  1. Navigate to the "Security Notifications" section in Security Settings.
  2. Choose which security events trigger notifications:
    • New device logins
    • Failed login attempts
    • Password changes
    • Two-factor authentication changes
    • Profile information updates
  3. Select your preferred notification methods (email, SMS, in-app).
  4. Click "Save Notification Settings".

API Access and Third-Party Integrations

Manage which applications and services have access to your Leaseora account:

  1. Navigate to the "Connected Apps" section in Security Settings.
  2. Review the list of applications that have access to your account.
  3. Click "Revoke Access" for any applications you no longer use or don't recognize.

For developers using the Leaseora API:

  1. Navigate to the "API Keys" section in Security Settings.
  2. Generate, view, or revoke API keys as needed.
  3. Set permissions and access levels for each API key.

Frequently Asked Questions

How often should I change my password?

We recommend changing your password at least every 90 days. However, you should change it immediately if you suspect any unauthorized access to your account or if you've used the same password on another site that experienced a data breach.

What should I do if I notice suspicious activity on my account?

If you notice any suspicious activity, immediately change your password, review and terminate active sessions, check your connected apps, and contact our support team at security@leaseora.com to report the issue.

What happens if I lose access to my two-factor authentication device?

If you lose access to your 2FA device, you can use one of your backup codes to log in. If you don't have your backup codes, you'll need to contact support with verification of your identity to regain access to your account.

Can I use the same phone number for 2FA on multiple Leaseora accounts?

Yes, you can use the same phone number for 2FA on multiple accounts. However, for maximum security, we recommend using an authenticator app rather than SMS verification when possible.

Need more help? Contact our support team at support@leaseora.com or call us at +49 173 8622196.

Related Articles