# Security

{% hint style="danger" %}
With the implementation of the new [Dashboard interface](https://docs.opencollective.com/help/product/understanding-your-dashboard), we are currently in the process of updating our documentation and some pages may be out of date. Thank you for your patience. Please [contact](https://opencollective.com/contact) our support team if you need any assistance.
{% endhint %}

Fiscal Hosts can opt-in to enforce 2FA for all of their admins. Any attempt at triggering admin operations or visiting the admin pages will be blocked until the admins enable 2FA on their profiles. A rolling payout limit can also be set so that 2FA is triggered when this limit is met. \
\
Projects and events inherit the 2FA settings from their parents.

### How to enforce 2FA for all admins and set your rolling payout limit 

#### 1. Go to your fiscal host page 

#### 2. Click on ADMIN on the right-hand side 

![Step 2 screenshot](https://images.tango.us/workflows/0b3f9b5a-9046-4917-9334-a54a044f884b/steps/965cf509-8ddc-4974-8d01-1a744ab28851/dfcc53d7-dd97-4729-9366-0088b3f3e3fd.png?crop=focalpoint\&fit=crop\&fp-x=0.7878\&fp-y=0.5820\&fp-z=3.1814\&w=1200\&mark-w=0.2\&mark-pad=0\&mark64=aHR0cHM6Ly9pbWFnZXMudGFuZ28udXMvc3RhdGljL21hZGUtd2l0aC10YW5nby13YXRlcm1hcmsucG5n\&ar=2752%3A1536)

#### 3. Click on Organization Settings

![Step 3 screenshot](https://images.tango.us/workflows/0b3f9b5a-9046-4917-9334-a54a044f884b/steps/b0547adc-c16d-4e04-bd10-31d59e9486cf/ed36afd5-4db6-4bb6-9df2-1220076a461c.png?crop=focalpoint\&fit=crop\&fp-x=0.0983\&fp-y=0.7422\&fp-z=2.5142\&w=1200\&mark-w=0.2\&mark-pad=0\&mark64=aHR0cHM6Ly9pbWFnZXMudGFuZ28udXMvc3RhdGljL21hZGUtd2l0aC10YW5nby13YXRlcm1hcmsucG5n\&ar=2752%3A1536)

#### 4. Click on Security

![Step 4 screenshot](https://images.tango.us/workflows/0b3f9b5a-9046-4917-9334-a54a044f884b/steps/c1801a19-a37c-4c0b-9d98-491b944e3806/bd39e8f4-c42b-4f8f-ab5f-2987cd7d164c.png?crop=focalpoint\&fit=crop\&fp-x=0.1221\&fp-y=0.8633\&fp-z=2.1608\&w=1200\&mark-w=0.2\&mark-pad=0\&mark64=aHR0cHM6Ly9pbWFnZXMudGFuZ28udXMvc3RhdGljL21hZGUtd2l0aC10YW5nby13YXRlcm1hcmsucG5n\&ar=2752%3A1536)

#### 5. Check All 'Your Fiscal Host' admins must have two-factor authentication and/or set a rolling limit 2FA for payouts 

<figure><img src="https://2931279126-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-LWSZizTt4ZC1UNDV89f%2Fuploads%2Fy7tYWjxzHIVJHNhoV4fX%2Ffiscalhosts_settings_security_2022-11-25.png?alt=media&#x26;token=939e3976-d22c-423c-b0ff-c712e83b3b0c" alt=""><figcaption></figcaption></figure>

**6. Click Save**

<figure><img src="https://2931279126-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-LWSZizTt4ZC1UNDV89f%2Fuploads%2FkX8gtHmQDXMR93DIqmDR%2Ffiscalhost_settings_security_save_2022-11-25.png?alt=media&#x26;token=58f3c422-d8de-4146-a000-25a03d690415" alt=""><figcaption></figcaption></figure>

**When visiting admin pages without 2FA, admins will be prompted to enable it**

[![image](https://user-images.githubusercontent.com/1556356/202162859-7e9cf92e-cb93-49fe-975d-701e7c0b76e6.png)](https://user-images.githubusercontent.com/1556356/202162859-7e9cf92e-cb93-49fe-975d-701e7c0b76e6.png)


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.opencollective.com/help/fiscal-hosts/fiscal-host-settings/security.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.