One-Time Passcode Authentication Requirement 2025

Sprout will release One-Time Passcode (OTP) Authentication Requirement for accounts that don’t have Single Sign-On (SSO) or Two-Step Verification (TOTP) enabled beginning on April 15, 2025.

How does OTP work?

When OTP is enabled for your Sprout account, users will:

1. Enter their username and password on the log in screen.
2. Receive a one-time code that's sent to the registered email (the email address at login).
3. Enter the code from the email to complete the login process for Sprout.

When this feature is released, Multifactor Authentication (MFA) will be required in order to login to Sprout via:

• Two-Step Verification (2SV) (can enable in Security Settings) OR
• OTP (One-Time Passcode) via email (default if 2SV is not enabled)

Why is this change happening?

Enforcing MFA better protects your Sprout account and brand reputation by preventing unauthorized access, and we're adding OTP as an additional option for MFA alongside 2-Step Verification. 

For more details on security best practices and authentication options, check out this article.

When will this change go into effect?

Sprout will use a roll-out schedule to implement MFA login starting on April 15, 2025. In the coming weeks, you'll see a popup notification in Sprout letting you know when this change is going into effect. 

How do I enable Two-Step Verification?

You can enhance your account security by enabling Two-Step Verification by following these instructions.

How do I enable Single Sign-On (SSO)?

If you are the Sprout Account Owner or have the required administrative permissions, you can follow these instructions to enable SSO for your account. You can also require Two-Step Verification for all users by following these instructions.