Multi-Factor Authentication

MFA is Mandatory

Every Zero user must enable MFA. This is a platform-wide security requirement — there are no exceptions. This ensures that even if your password is compromised, your firearms data remains protected.

Why MFA is mandatory

Zero stores sensitive information including firearms records, certificate details, and personal data. A compromised account could expose this data, so we require all users to protect their accounts with a second factor beyond their password.

MFA is not optional on Zero. This is a deliberate platform-wide policy, not a recommendation.

Grace period

New users are given a short grace period to set up MFA:

• 30 days from account creation, or
• 5 logins, whichever comes first

After the grace period expires, you will be required to configure MFA before you can continue using the platform.

Supported methods

Zero supports authenticator app (TOTP) as the MFA method. This works with any standard authenticator app, including:

• Google Authenticator
• Microsoft Authenticator
• Authy
• 1Password
• Bitwarden

How to set up MFA

1. Sign in to Zero and go to Profile
2. Select Security
3. Click Enable MFA
4. Scan the QR code with your authenticator app
5. Enter the 6-digit code from your app to confirm
6. Save the recovery codes in a secure location

Save your recovery codes

When you enable MFA, you will be given a set of one-time recovery codes. Store these somewhere safe — they are the only way to regain access to your account if you lose your authenticator device.

What happens if you lose your device

If you lose access to your authenticator app:

1. Use one of your recovery codes to sign in
2. Once signed in, go to Profile > Security and reconfigure MFA with your new device

If you have lost both your authenticator device and your recovery codes, contact support@zeroshooting.com for assistance. You will need to verify your identity before access can be restored.