We use cookies to provide and improve our services, website, and customer support.
For more information on how we use cookies, please check out our Cookie Policy.

Decline Cookies
Accept Cookies
Manage Cookies

Security and Privacy

How you (and we) can keep your data safe and secure in Nookal.

Setting up Multi-Factor Authentication

Danny Written by Danny
... on a joyful July day.

To maintain Nookal’s high level of account security, each staff member needs to choose between 2 options to protect their Nookal account:

1. Multi-Factor Authentication (MFA):

Login becomes a 2 step process – first you enter your password, then you use your mobile device to generate a code which you need to enter as well.

2. Changing Your Password every 45 days.

By default, all user password accounts are set to 45 Day Rotations, but for increased account security, we recommend using MFA.


Setting Up Multi-Factor Authentication

You will need to download the Google Authenticator app on the mobile device used to sign into your account. You can download this onto your Android or Apple devices.

1. Sign in to your Nookal account via the Nookal Login page.


2. Click on your Name at the top right of the menu.

3. Click My Profile.


4. Click Multi-factor.

5. On your mobile device, open Google Authenticator.

6. Select Begin.

7. Select Scan a barcode.

8. With your mobile device, scan the QR code that appears when multi-factor is selected.

9. Type in the code (6 numbers) displayed on your mobile device into the Verification Code field and click on the green checkbox.

Enter the code quickly as each code is only valid for 30 seconds. If the code expires, you will need to generate and enter a new code.

10. Choose a Security Question from the dropdown list.

Security questions & answers are very important. They will be used if you can’t access your mobile device, so that you can still sign into your account.

11. Write the Answer below the question.

12. Repeat steps 10 and 11 for 2nd and 3rd questions.

13. Click Save Changes.


Once this is done, the multi-factor box will be green meaning it is active. You will need access to your mobile device each time you sign in to your Nookal account.


Reverting to 45 Day Rotation

We do not recommend using the 45 Day Rotation as it is less secure than Multi-Factor Authentication.  If you decide to use this option, make sure you use a complex password.


1. Sign in to your Nookal account via the Nookal Login page.


2. Click on your Name at the top right of the menu.

3. Click My Profile.


4. Click 45 Day Rotation.

5. Click Save Changes.


Every 45 days you will receive a notification asking you to change your password. See Changing Account Password for more details on this.


Disabling MFA for staff as an Account Owner

If you cannot login via MFA, and also fail to answer your Security Questions correctly, you can request for your Account Owner to disable MFA.

To do this:

1. The Account Owner must navigate to Setup > Users > Staff

2. Click on the correct Staff member’s name

3. Click Disable MFA at the bottom of the page

4. Click Save Changes

Once this is done the staff member can login using only their username and password, and will be prompted to update their Security Questions.

Help Centre

How can we help?