Two-factor authentication (2FA) strengthens account security by requiring two methods to verify your identity. For your Clio account, this means logging in with your username and password, followed by a time-sensitive code that is either sent to your mobile device via text message (SMS) or generated by an authentication app. Once enabled, you can set up 2FA via the Clio Mobile app to quickly verify your identity.
By enabling 2FA, you are adding an extra layer of security in case your password is compromised. If someone tries logging in with your username and password, you have peace of mind knowing they cannot access your account without a time-sensitive code. Adopting 2FA ultimately improves your data security and can prevent 99% of account takeovers.
Set up 2FA via text messaging
Each firm user will need to set up 2FA on their own account. Clio currently supports authentication through text messaging via SMS, a push notification via the mobile app to your phone or an authenticator app. Enabling 2FA using text messaging requires a phone that can receive SMS text messages, your Clio username and password, and temporary code sent to your phone from Clio.
You can enable 2FA in your Clio Manage or Clio Grow settings. When 2FA is enabled in one account, either Clio Manage or Clio Grow, it is automatically enabled in the other account.
Note: The code sent to your mobile device will expire 10 minutes after being sent.
- Go to Settings > Security & Compliance.
- Under My Security, click Update your security settings.
- Scroll down to Two-factor authentication (2FA) and click Set up 2FA.
- Enter your Clio login password and click Continue.
- Select Text Message (SMS) from the list of options and click Continue.
- Enter your primary phone number into the provided field and click Continue.
- The field should select your country and format your phone number automatically.
- Enter the six-digit code that was sent to the mobile device that is connected to the provided phone number and then click Continue.
- Follow the prompts and select either Sign in to Clio Grow or Sign in to Clio Manage
- Enter your Clio username and password, and then enter the code sent to your mobile device.
- Download a copy of your emergency backup codes. Learn more below.
Tip: When prompted to enter the code at your next log in, check the box for Keep me logged in for a week to extend your session by a week.
- Go to Settings > Personal
- In the Security section, click Manage my security.
- Scroll down to Two-factor authentication (2FA) and click Set up 2FA.
- Enter your Clio login password and click Continue.
- Select Text Message (SMS) from the list of options and click Continue.
- Enter your primary phone number into the provided field and click Continue.
- The field should select your country and format your phone number automatically.
- Enter the six-digit code that was sent to the mobile device that is connected to the provided phone number and then click Continue.
- Follow the prompts and select either Sign in to Clio Grow or Sign in to Clio Manage
- Enter your Clio username and password, and then enter the code sent to your mobile device.
- Download a copy of your emergency backup codes. Learn more below.
Tip: When prompted to enter the code at your next log in, check the box for Keep me logged in for a week to extend your session by a week.
Unsubscribe from and resubscribe to 2FA text messages
If you do not want to receive 2FA text messages from Clio, you have the option to unsubscribe. Once unsubscribed, you will not receive any future text messages from Clio's 2FA text message provider to your phone number. Unsubscribing is not recommended since this could potentially block you from logging in to your Clio account if you enabled 2FA with text messaging. You can resubscribe at any time.
- Go to the 2FA text message you received from Clio.
- Type STOP and then send the message.
- Go to to your messaging application and start a new text message.
- Enter Clio's toll-free 2FA text message number, as follows: 1-844-298-3792.
- Type START and then send the message.
Set up 2FA via authenticator app
Each firm user will need to set up 2FA on their own account. Clio currently supports authentication through an authenticator app or text messaging via SMS to your phone. Enabling 2FA with an authenticator app requires the smartphone that you will install the authentication app on, your Clio username and password, and the time-based one-time password (TOTP) sent to your phone from Clio.
What is a TOTP? A time-based one-time password (TOTP) is a temporary code generated by an algorithm that uses current time as an input. For your Clio account, this means a six-digit code that appears in your authentication app for 30 seconds before it is replaced with a new six-digit code.
Step 1: Download an authentication app
Before enabling 2FA in your Clio account, start by downloading an authentication app on your smartphone or computer. Clio supports standard TOTP applications, including the following:
- Authy
- Google Authenticator
- 1Password
- Microsoft Authenticator
- Duo Mobile
- OneLogin
Step 2: Turn on 2FA via authenticator app in Clio
After downloading an authentication app, you can enable 2FA in your Clio Manage or Clio Grow settings. When 2FA is enabled in one account, either Clio Manage or Grow, it is automatically enabled in the other account.
- Go to Settings > Security & Compliance.
- Under My Security, click Update your security settings.
- Scroll down to Two-factor authentication (2FA) and click Set up 2FA.
- Enter your Clio login password and click Continue.
- Select Authenticator App from the list of options and click Continue.
- Open your authentication app and add a new account by clicking the + icon or by clicking add account.
- Use your device’s camera to scan the QR code that appears in Clio. You can also manually enter the code.
- If the QR code is not visible, you may already have 2FA set up on another device.
- In Clio, click Continue, enter the six-digit code generated by your authenticator, and then click Continue again.
- Follow the prompts and select either Sign in to Clio Grow or Sign in to Clio Manage
- Enter your Clio username and password, and then enter the TOTP code generated by your authenticator.
- Download a copy of your emergency backup codes. Learn more below.
Tip: When prompted to enter the TOTP code at your next log in, check the box for Keep me logged in for a week to extend your session by a week.
- Go to Settings > Personal
- In the Security section, click Manage my security.
- Scroll down to Two-factor authentication (2FA) and click Set up 2FA.
- Enter your Clio login password and click Continue.
- Select Authenticator App from the list of options and click Continue.
- Open your authentication app and add a new account by clicking the + icon or by clicking add account.
- Use your device’s camera to scan the QR code that appears in Clio. You can also manually enter the code.
- If the QR code is not visible, you may already have 2FA set up on another device.
- In Clio, click Continue, enter the six-digit code generated by your authenticator, and then click Continue again.
- Follow the prompts and select either Sign in to Clio Grow or Sign in to Clio Manage
- Enter your Clio username and password, and then enter the TOTP code generated by your authenticator.
- Download a copy of your emergency backup codes. Learn more below.
Tip: When prompted to enter the TOTP code at your next log in, check the box for Keep me logged in for a week to extend your session by a week.
Set up 2FA via Clio Mobile app
Each firm user will need to set up 2FA on their account before enabling 2FA through the mobile app. Clio currently supports authentication through an authenticator app or text messaging via SMS to your phone. Enabling 2FA via the mobile app requires an active 2FA method in Clio, the Clio Mobile app on your smartphone and your Clio username and password.
- Go to Settings > Clio Mobile app.
- If you need to install the mobile app, can the QR code or install the app from the I0S or Android app store.
- Next to Two-factor authentication with the mobile app, click Manage.
- Under Two-factor authentication, next to Push notifications to Clio Mobile app, click Set up.
- Enter your Clio login password and click Continue.
- Verify you are signed in to the mobile app, enable push notification settings on your smartphone, and click Enable push notifications.
- On your device, tap the Confirm sign-in to Clio notification and Confirm sign-in to enable 2FA push notifications.
Download and use backup codes
Emergency backup codes can help you gain access to your account in case you lose your phone or lose access to your authentication app, and if you cannot sign in to Clio. See the steps below to learn how to download a copy of your backup codes in both Clio Manage and Clio Grow and how to enter a backup code when logging in.
Download backup codes:
- Go to Settings > Security & Compliance.
- Under My Security, click Update your security settings.
- Scroll down to Two-factor authentication (2FA).
- Next to Backup codes, click Download.
- Go to Settings > Personal
- In the Security section, click Manage my security.
- Scroll down to Two-factor authentication (2FA).
- Next to Backup codes, click Download.
Enter backup code:
- Enter your username and password.
-
Under Security code, click Use backup security code.
- Do not enter the backup code in the Security code field.
- Under Emergency backup code, enter one of your backup codes and click Sign in.
Unable to log in
If you do not have access to your authenticator, you may still be able to log in to Clio since 2FA sessions can be extended up to a week. If you can still log in, re-add your account to your new device or alternate authentication app.
- Go to Settings > Security & Compliance > My Security > Update your security settings.
- Next to Security codes click View.
- Enter your Clio password.
- When the QR code appears, scan the code on your new device or alternate authentication app.
- Follow the prompts to complete set up.
Tip: If you get a new phone, lose your device, cannot access your Clio account as described above, or do not have access to your backup codes, ask an administrator at your firm to disable 2FA for your account.