Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

FEATURE REQUEST - Option to disable 2FA

TSRSM-John
Contributor

‎03-31-2025 09:57 AM - edited ‎04-08-2025 03:09 PM

Am I the only one who thinks it's absurd that 2FA isn't an opt-in feature? We have workstations with their own Shipstation logins across several locations, but only managers typically have access to the emails addresses associated with those logins. We're constantly running into issues where managers are being bothered on their days off, or while on vacation, in order to retrieve 2FA codes for staff trying to print and fulfill orders. Just this weekend I was in the mountains and had no cell service, and our staff were unable to log in to Shipstation without me.

I can see why some users would need this level of security, but for others it's just getting in the way. Please allow clients to disable 2FA.

EDIT: We've landed on a solution, for anyone interested. You can set up an inbox filter in the email where the 2FA codes are being sent that automatically forwards them to whichever emails you'd like. It's really easy to do in gmail, but I'm not sure about other services.

Labels:
24 REPLIES 24

joelofarc
First-timer

‎04-02-2025 06:41 AM

I agree this would be helpful in our environment as well.

CE-Chris
Explorer

‎04-02-2025 11:48 AM

Agreed. I know they had a ton of fraud going on with compromised accounts, but its very annoying in its current state to have shared devices with different users.

Or other 2FA options would be helpful too.

CaraAdmin
Khoros
In response to CE-Chris

‎04-03-2025 08:51 AM

Hello @TSRSM-John!

 

Thank you for your post in the community! We love hearing great ideas like this and understand how beneficial this feature would be for your team. We've shared your request with our development team for review. We appreciate your feedback—keep the ideas coming!

 

Happy Shipping!

 

-Cara

 

 

customercare8
Explorer
In response to CaraAdmin

‎05-03-2025 03:20 PM

Any type update on this? This feature request is huge for my business as well. I just googled this issue and a slew of stuff has popped up about this issue with everybody with it. Logging them out of the apps every single day and like with me and my business, I have to know the orders so if my app doesn’t notify me because I’ve been logged out it’s a big issue affects my business a lot, which may cause me to leave Ship Station. We have multiple users on our account we pay for multiple users and I’m the only one that uses this login so I shouldn’t be logged out correct? Can we please try to come up with solution on this. I don’t think you guys understand how big of an issue this really is and how many businesses this really does affect.

CaraAdmin
Khoros
In response to customercare8

‎05-05-2025 08:32 AM

Hello @customercare8!

 

Thank you for following up on this feature request! While it’s unlikely that we’ll offer the option to opt out of 2FA, we’re actively working on enhancements to make the process more seamless while continuing to keep our merchants secure. One recent improvement is the “Remember This Device” feature, which allows users to skip MFA challenges on trusted devices for up to 30 days.

 

We always encourage merchants to share their pain points and will do our best to address them wherever possible. Your feedback is incredibly valuable and helps guide meaningful improvements—thank you for being part of the conversation!

 

Happy Shipping!

 

-Cara

 

 

0 Kudos

deadjeep
New Contributor

‎04-03-2025 05:56 AM

They really need to rethink this, for a company who remotes all their customer service you would think they would understand the difficulties in end users not have access to a company email. 

beamzen
Occasional Contributor

‎04-08-2025 08:53 AM

What's interesting is that I requested to change our email address to a shared business email address thinking this would solve the issues. I answered all 7+ questions (billing info, etc. date of birth, everything but your social security number). They changed the login email address, but the verification 2FA emails are still being sent to the old/original email address. I feel like I'm taking crazy pills.

cll702
New Contributor
In response to beamzen

‎04-12-2025 02:51 PM

this is one of the dumber things they rammed into production without any QA/UE testing. Time to start evaluating alternatives i guess. This one is too much of a disruption to business to tolerate.

melissa12
New Contributor

‎04-14-2025 08:15 AM

Agreed. This is incredibly disruptive for us as well

mhtalk
Occasional Contributor

‎04-14-2025 12:01 PM

I would like the ability to opt out of 2fa as well. We have 12 users daily login issues. Also verification 2FA emails are still being sent to the old email address after changes.

tranpeter254
First-timer

‎04-28-2025 11:02 PM

PLEASE!! DEV TEAM! Make this an optional opt in for 2FA. 2FA emails being sent to managers is so effin annoying. It slows down our production so much when everything needs to shut down so the 2FA code can be sent to the packing team. Why haven't you thought of this?

TSRSM-John
Contributor
In response to tranpeter254

‎04-29-2025 08:11 AM

This is an old thread and I doubt the admins are still monitoring it. I would encourage you to make your own post, to give them a more obvious reminder that a lot of people are unhappy with this feature. 

0 Kudos

JRMTL
First-timer

‎05-12-2025 08:00 AM

Agree, this has to go. Was on vacation in Europe and they couldn't work half the time because of the code...

CaraAdmin
Khoros
In response to JRMTL

‎05-13-2025 12:35 PM

Hello @JRMTL and @Konradinc!

 

Thank you for contacting the community about your current experience with the 2FA process.

Our development team recommends using a standalone authenticator app, which tends to offer a more reliable and consistent experience. If you're an iOS user, it's worth noting that Apple has recently added support for authentication codes directly within the Passwords app, making the process even more seamless.

For those managing shared accounts, 1Password is also a great option—it's been effective for securely sharing and handling authentication codes across teams. Here's one of the apps our developers specifically suggested!

We truly appreciate your feedback—thanks for helping us improve!

 

Happy Shipping!

 

-Cara

0 Kudos

Konradinc
First-timer

‎05-12-2025 06:41 PM

This option has to go away. There is no way I want to have 2FA all the time. 

makebadges
Occasional Contributor

‎05-13-2025 06:11 PM

The employees operating the shipstation account don't have access to email.

It's a huge hassle having to give the code each time they log in to their terminal.

I need it gone.

info275
New Contributor

‎05-20-2025 01:04 PM

Thought I was the only one. It's causing huge disruptions to our business. As others have mentioned, our pick/packers don't have access to individual emails. If they understand the ecosystem of an ecom warehouse at all, they'd know this is not feasible. I get they must be dealing with lots of fraud, but really need a simplier way. Some sort of IP/device/network whitelisting or something. This has actually triggered me to look for alternatives after using Shipstation for 7 years. Seems better now, but still a pain in the ass. 

ShippingPyrate
Occasional Contributor

‎05-22-2025 08:23 AM

This is ridiculous. Shipstation is making our work harder, not easier.

0 Kudos

RobC
Contributor

‎05-22-2025 12:11 PM

It's ridiculous that I pay for additional users who have their own logins and email addresses yet *I* get all of their two factor authentication emails.

If I have to set up an email forwarder the next time I go out of town, support is getting cc'd on every email 🙂

I don't understand why Shipstation isn't viewing this as a massive high priority bug.  Literally no other SAS works like this.

 

 

shipstationwd
Occasional Contributor

‎06-10-2025 07:56 AM

This constant two factor on shipstation is ridiculous. We are in the system every single day, and employees get stuck, and have to ask management for the two factor code. And shipstation will not get rid of two factor because its for them not us. 

0 Kudos

RobC
Contributor
In response to shipstationwd

‎06-10-2025 08:12 AM

I don't have a problem with two factor authentication as my employees have their own email accounts.  I just need the authentication emails to go to them, not me. It's just craziness that they do it this way.

0 Kudos

CaraAdmin
Khoros
In response to shipstationwd

‎06-16-2025 12:55 PM

Hello @RobC!

 

Thank you for reaching out to the Community for help with this!

Good news — we can absolutely help you resolve this. The solution is to create a separate user account for each employee. This will allow everyone to log in individually and avoid authentication issues. The steps to set this up are outlined in the Help Center article linked below:

🔗 Adaptive Multi-Factor Authentication

If you have any further questions or run into trouble during setup, feel free to contact our support team—we’re happy to help!

 

Happy Shipping!

 

-Cara

0 Kudos

RobC
Contributor
In response to CaraAdmin

‎06-17-2025 09:38 AM

That's how it should work -- but it doesn't as other people have indicated here and on Facebook. 

We do have different user accounts with different email addresses assigned.  

It only sends the two factor authentication emails to the primary user.

 

0 Kudos

CaraAdmin
Khoros
In response to RobC

‎06-17-2025 12:51 PM

Hello @RobC!

Thank you for your reply! I recommend contacting our Support team for further assistance, as they can walk you through some troubleshooting steps to help identify and resolve the issue. They're equipped to look closer and ensure everything works as expected.

 

I appreciate your patience, Rob!

 

-Cara

0 Kudos