GFM Pro - logo

Multifactor authentication

Multifactor authentication (MFA) is a user verification method that requires more than one type of validation, such as a password and a one-time passcode (OTP). It helps prevent unauthorized account access even if someone has the username and password.

You can use MFA for your organization’s GoFundMe Pro account. This will require admins to enter their password and verification code via their phone, Google Authenticator, or Okta Verify to access your account.

To set up and use MFA, you'll need a:

  • Computer
  • Mobile device

Why is it important?

MFA reduces the risk of unauthorized access compared to passwords alone. It's an industry best practice and a critical component in safeguarding user and supporter data.

MFA can also help you:

  • Comply with regulatory requirements
  • Protect sensitive data
  • Prevent identity theft

MFA options

When first setting up MFA, you can choose your preferred authentication option. GoFundMe Pro supports:

  • Google Authenticator (iPhone or Android)
  • Okta Verify (iPhone or Android)
  • Call or text verification (Recommended if you do not have a smartphone)

Important: If your phone number has changed or you need to switch authentication options, contact our Care team to reset your authenticators.

Set up MFA

If you’re a new GoFundMe Pro admin, select the button in the ‘Claim your account’ email sent to your address to set up your account for the first time.

To set up MFA:

  1. Start on your computer and log in to GoFundMe Pro using your username and password
  2. You’ll be prompted to set up multifactor authentication. Select Setup under your preferred option.

Setup multifactor authentication

  1. Follow the prompts to verify

Before you finish, you'll be prompted to set up an additional security method. This step is optional, but we highly recommend setting up at least two authentication factors. This gives you options and makes sure you can always log in, even if one method isn't available.

After you select Finish, you will not be able to set up additional security options.

  1. Select Finish

You've successfully set up multifactor authentication! From now on, you'll need to provide a verification code from your chosen app or phone, at least once a day, to log into your account.

Log in with MFA

To log in with MFA:

Note: Use your GoFundMe Pro credentials when logging into your preferred authenticator app.

  1. Log in to GoFundMe Pro using your username and password
  2. Enter the verification code provided in your chosen authenticator app or phone
  3. Select Verify

Unlock MFA

Your account will be locked out if there are five failed attempts with a password. If you get locked out, contact our Care team to unlock your account.

Frequently asked questions

Is MFA required?

Yes. MFA will be required for all GoFundMe Pro admins starting in the first half of 2025. Your organization will be notified before MFA is required for your account.

Is there any additional cost associated with MFA?

No, there is no extra cost.

Will supporters need to use MFA to access their accounts?

No, supporters will not be required to use MFA. They can continue to log in using their password or a one-time code sent to their email.

How often will an organization need to use MFA?

Organizations will need to log in with MFA once per day for each browser they use (e.g., once for Chrome, once for Safari).

Why am I being asked to use MFA when logging into GoFundMe Pro Live Events?

GoFundMe Pro and Live Events streamline access with single sign-on (SSO). While MFA is required for GoFundMe Pro and not specifically for Live Events, admins who attempt to access Live Events before authenticating through GoFundMe Pro may be prompted to complete MFA as part of the login process.

Can organizations configure the frequency of MFA?

No, not at this time.

Is there a difference between two-factor and multi-factor authentication?

Technically, yes—MFA allows for more than two factors. However, GoFundMe Pro will support two factors: a password and a one-time passcode.

How is MFA different from SSO?

SSO lets users access multiple applications with a single login. MFA requires an additional authentication step and can be used alongside SSO for extra security.

How does this work if my organization already has an IDP (identity provider)?

GoFundMe Pro’s multi-factor authentication solution is compatible through Google Authenticator, Okta Verify, and SMS/call.

An IDP other than Google Authenticator or Okta Verify will not work for our MFA solution. We may consider verification through additional identity providers in future releases.

Can my organization configure which admins get prompted for MFA?

No. Our out-of-the-box Okta solution applies MFA to all admins without customization options.

Will MFA apply to Live Events log-ins?

Not at this time. But, we may consider MFA for Live Events in future updates.

Will email be considered as an authentication factor?

No. Due to phishing risks, email won’t be used as an authentication factor. We prioritize secure, industry-leading authentication options.

My organization doesn’t allow mobile devices at work. How do we proceed?

If mobile devices are restricted, please contact our Care team, and we’ll work with you to find a solution.

Not seeing what you need?

Contact us