> For the complete documentation index, see [llms.txt](https://enterprise.hideez.com/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://enterprise.hideez.com/hideez-enterprise-server/single-sign-on-settings/user-settings.md).

# User settings

When administator [added your account](/hideez-enterprise-server/employees/how-to-add-an-employee.md) and [enabled SSO option](/hideez-enterprise-server/single-sign-on-settings/nastroika-polzovatelei.md), you have to open the link in the email from the server (delivered after user SSO enabling, described in previous section) and register your user.

## Two-factor authentication required

You will see the next screen. Click the "**Next**" button. Also here you can change the display language.

<figure><img src="/files/wSheOFk3P8ssvALHGCx7" alt="" width="375"><figcaption></figcaption></figure>

If your administrator [enabled second-factor authentication](/hideez-enterprise-server/single-sign-on-settings/nastroika-polzovatelei.md) you have to set and confirm password.

<figure><img src="/files/u8SrWDE93MFVa1MOQhvN" alt="" width="375"><figcaption></figcaption></figure>

Then you have to set up the second factor:

<figure><img src="/files/tSPW5YDzpIElcZWsLrnA" alt=""><figcaption></figcaption></figure>

### 1. Passkey<br>

* If you have a hardware security key (for example, **Hideez Key**) or your smartphone as a Passkey, choose the "Cross-Platform" option.
* If you want to use a platform key (such as a biometric sensor or PIN code from your computer/smartphone), choose the "Platform" option. Then follow the instructions on the screen.<br>

<figure><img src="/files/8ueAXy4IdZvgrgneda2w" alt="" width="375"><figcaption></figcaption></figure>

### 2. Hideez Authenticator

<figure><img src="/files/XDsyYedhjBPrifZP7FkL" alt="" width="375"><figcaption></figcaption></figure>

### 3. OTP Authenticator App<br>

After successfully enabling two-factor authentication, you will be prompted to save your recovery codes. 10 codes, each of which consists of 8 characters. You can log in with their help if for some reason you cannot enter the OTP code.

<figure><img src="/files/HjG0T0C4qJusDOowQOyB" alt="" width="375"><figcaption></figcaption></figure>

​[Log in with the recovery code.​](/hideez-enterprise-server/administration/how-to-enable-two-factor-authentication-at-hideez-enterprise-server.md#log-in-with-recovery-code)

After successful sign in you can configure all these login options, change password, see the list of registered security keys in the "**FIDO2 Authenticators"** section (cross-platform and platform separately) and enroll new device (for example, smartphone) for single sign on, change page language, etc. Just choose desired setting and follow the instructions on the screen.

![](/files/lKyyBTpSlucD641zrg0k)

### Second factor is not required

If two-factor authentication is not required you have to set up sign in option. Also here you can change the display language.

<figure><img src="/files/uhTnPCMUa9AefHbuFW2B" alt="" width="375"><figcaption></figcaption></figure>

1. Use FIDO2 Authenticator<br>

   <figure><img src="/files/8CT3Ol2frtOZUGPwfo77" alt=""><figcaption></figcaption></figure>

   \- If you have a hardware security key (for example, Hideez Key), choose the "Cross-Platform" option.\
   \- If you want to use a platform key (such as a biometric sensor or pin code from your computer/smartphone), choose the "Platform" option.\
   \
   In this case you can choose "use usernameless" option that allows you to login without username.\
   \
   Then follow instructions on the screen.<br>
2. Use Hideez Authenticator\
   \
   Follow instructions on the screen.\
   \
   ![](/files/MK6EZKBoG9HkjmoVYaaT)<br>

After successful sign in you can configure all these login options, see the list of registered security keys in the "**FIDO2 Authenticators"** section (cross-platform and platform separately) and enroll new device (for example, smartphone) for single sign on, change page language, etc. Just choose desired setting and follow the instructions on the screen.

![](/files/cUXmR8hci111QDtx1dXR)

### Disabling 2FA at HES <a href="#disabling-2fa-at-hes" id="disabling-2fa-at-hes"></a>

To disable two-factor authentication on the HES server, go to the **One-Time Password** section and click **Disable 2FA**.

![](/files/6hmWpwaUfuC3RDfhF0vG)

Confirm the action.

<img src="/files/re9Wkat4iiHYPf4Og27I" alt="" width="375">

Two-factor authentication is disabled. But you can always resume it.

### How to enable 2FA again

Go to the **One-Time Password** and click on the **Add OTP app** button. Then follow the instructions on screen.

<figure><img src="/files/knAeclw8rG307VQaqhUi" alt=""><figcaption></figcaption></figure>

### Resetting recovery codes at HES

After you [disable 2FA](#disabling-2fa-at-hes) on HES and [enable it](#undefined) again, your recovery codes will be reset.

Please, note, if you just reset the OTP application, recovery codes will be not reset.


---

# Agent Instructions
This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com.

## Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter, and the optional `goal` query parameter:

```
GET https://enterprise.hideez.com/hideez-enterprise-server/single-sign-on-settings/user-settings.md?ask=<question>&goal=<endgoal>
```

`ask` is the immediate question: it should be specific, self-contained, and written in natural language.
`goal` is optional and describes the broader end goal you are ultimately trying to accomplish on behalf of the user. GitBook uses it to tailor the answer towards what is most useful for that goal.

The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.