HirePOS Sign-In Methods

HirePOS offers multiple sign-in methods to help protect your account and business data. Some methods provide stronger protection than others.

The following sign-in methods are listed in order from most secure to least secure.

Available providers: Microsoft and Google

⏳Coming Soon: Xero SSO

Single Sign-On allows you to sign in to HirePOS using your existing Microsoft, Google or Xero account. Authentication is handled directly by the identity provider, allowing you to benefit from their advanced security features.

• Highest level of security available in HirePOS

• Uses the security features of Microsoft, Google or Xero

• Supports advanced protection features such as phishing resistance, device trust and risk-based authentication

• No additional HirePOS password to remember

• Simplified user management

All users, particularly businesses using Microsoft 365 or Google Workspace.

Supported apps: Microsoft Authenticator, Google Authenticator and compatible authenticator applications

Authenticator apps generate a unique six-digit verification code on your mobile device every 30 seconds. After entering your email address and password, you enter the current code displayed in your authenticator app to complete sign-in.

• Strong two-factor authentication

• Verification codes are generated on your device

• Does not rely on Email or SMS delivery

• Works even when you are offline

• Faster sign-in than email verification codes

• Protects against password theft

Users who do not use Single Sign-On but want stronger account protection.

1. Sign in with your HirePOS email address and password.

2. Open your authenticator app.

3. Enter the current six-digit verification code.

4. Access your HirePOS account.

Email-based two-factor authentication provides an additional layer of protection by sending a one-time verification code to your registered email address.

After entering your email address and password, HirePOS sends a six-digit code to your inbox. The code must be entered before access is granted.

HirePOS does not recommend SMS verification codes because SMS can be vulnerable to risks such as SIM-swap attacks, mobile number porting fraud, mobile account compromise, message interception, phishing, and loss of access to the phone number.

• More secure than password-only sign-in

• Easy to use

• No additional mobile app required

• Helps prevent unauthorised access if a password is compromised

• Depends on email delivery

• Can be slower than authenticator apps

• Security depends on the security of your email account

1. Sign in with your HirePOS email address and password.

2. Check your email inbox.

3. Enter the six-digit verification code.

4. Access your HirePOS account.

This is the traditional sign-in method using only an email address and password.

HirePOS requires passwords to meet minimum security requirements, including a minimum length of 12 characters.

• Simple and familiar

• No additional setup required

• Provides only a single layer of security

• More vulnerable to password theft, phishing and credential reuse attacks

• Does not provide the additional protection of two-factor authentication

⚠️ Password-only sign-in is considered the least secure authentication method available in HirePOS and will be progressively phased out in favour of stronger authentication methods.

Users are encouraged to migrate to either:

• ✅ Single Sign-On (Microsoft, Google or Xero), or

• ✅ Authenticator App (TOTP) authentication

as soon as possible.

For the strongest account protection, HirePOS recommends the following order of preference:

1. 😁 Single Sign-On (Microsoft, Google or Xero)

2. 🙂 Authenticator App (Microsoft Authenticator or Google Authenticator)

3. 😐 Email Verification Codes

4. 😡 Password Only (Legacy)

Using a stronger authentication method helps protect your account, your business data and your users from unauthorised access.