# Security

Fiscal Hosts can opt-in to enforce 2FA for all of their admins. Any attempt at triggering admin operations or visiting the admin pages will be blocked until the admins enable 2FA on their profiles. A rolling payout limit can also be set so that 2FA is triggered when this limit is met.\
\
Projects and events inherit the 2FA settings from their parents.

### How to enforce 2FA for all admins and set your rolling payout limit

#### 1. Go to your fiscal host page

#### 2. Click on ADMIN on the right-hand side

![Step 2 screenshot](https://images.tango.us/workflows/0b3f9b5a-9046-4917-9334-a54a044f884b/steps/965cf509-8ddc-4974-8d01-1a744ab28851/dfcc53d7-dd97-4729-9366-0088b3f3e3fd.png?crop=focalpoint\&fit=crop\&fp-x=0.7878\&fp-y=0.5820\&fp-z=3.1814\&w=1200\&mark-w=0.2\&mark-pad=0\&mark64=aHR0cHM6Ly9pbWFnZXMudGFuZ28udXMvc3RhdGljL21hZGUtd2l0aC10YW5nby13YXRlcm1hcmsucG5n\&ar=2752%3A1536)

#### 3. Click on Organization Settings

![Step 3 screenshot](https://images.tango.us/workflows/0b3f9b5a-9046-4917-9334-a54a044f884b/steps/b0547adc-c16d-4e04-bd10-31d59e9486cf/ed36afd5-4db6-4bb6-9df2-1220076a461c.png?crop=focalpoint\&fit=crop\&fp-x=0.0983\&fp-y=0.7422\&fp-z=2.5142\&w=1200\&mark-w=0.2\&mark-pad=0\&mark64=aHR0cHM6Ly9pbWFnZXMudGFuZ28udXMvc3RhdGljL21hZGUtd2l0aC10YW5nby13YXRlcm1hcmsucG5n\&ar=2752%3A1536)

#### 4. Click on Security

![Step 4 screenshot](https://images.tango.us/workflows/0b3f9b5a-9046-4917-9334-a54a044f884b/steps/c1801a19-a37c-4c0b-9d98-491b944e3806/bd39e8f4-c42b-4f8f-ab5f-2987cd7d164c.png?crop=focalpoint\&fit=crop\&fp-x=0.1221\&fp-y=0.8633\&fp-z=2.1608\&w=1200\&mark-w=0.2\&mark-pad=0\&mark64=aHR0cHM6Ly9pbWFnZXMudGFuZ28udXMvc3RhdGljL21hZGUtd2l0aC10YW5nby13YXRlcm1hcmsucG5n\&ar=2752%3A1536)

#### 5. Check All 'Your Fiscal Host' admins must have two-factor authentication and/or set a rolling limit 2FA for payouts

<figure><img src="https://1948397550-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FuNQPJeCQS3kEc00OAwaT%2Fuploads%2FOUs1Hg1lUmKcVp8ej97D%2Fimage.png?alt=media&#x26;token=a8589722-ff0e-4379-80a8-a203add7fb79" alt=""><figcaption></figcaption></figure>

**6. Click Save**

<figure><img src="https://1948397550-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FuNQPJeCQS3kEc00OAwaT%2Fuploads%2Fgit-blob-bbc6da2eb7ce998cc7f87fc6028ed31f231def2d%2Ffiscalhost_settings_security_save_2022-11-25.png?alt=media" alt=""><figcaption></figcaption></figure>

**When visiting admin pages without 2FA, admins will be prompted to enable it**

[![image](https://user-images.githubusercontent.com/1556356/202162859-7e9cf92e-cb93-49fe-975d-701e7c0b76e6.png)](https://user-images.githubusercontent.com/1556356/202162859-7e9cf92e-cb93-49fe-975d-701e7c0b76e6.png)