Homeowner Portal
      Back to home
      1. Homeowner Help Centre
      2. Homeowner Portal

      How do I get access to the Homeowner Portal?

      When you sign up with Hometime, your local Hosting Partner will send you an invitation email to access the Hometime Homeowner Portal. Click the "Accept my invite" button to start the brief sign up process by setting a password and your preferred 2FA method. 

      If you haven't received an invite, please get in touch with your Hosting Partner, and they will resend your invite to sign up.

      Homeowner Invitation Email Example - 062025

      In today’s digital world, protecting your online accounts is more important than ever. Cybercriminals are constantly looking for ways to steal personal information, hijack accounts, or commit fraud. Two of the most effective ways to protect yourself are by using strong passwords and enabling two-factor authentication (2FA).

      Your 2FA methods are Authenticator App or Text Message (SMS). The free Google Authenticator app generates a verification code you can use instead of receiving a code via SMS. Authenticator apps are safer than SMS because they generate codes on your device, reducing the risk of hacking, SIM-swapping, or scams.

      We recommend you set up Google Authenticator as your primary 2FA method, and also set up SMS as a backup method. 

      new-login-screen

      The Importance of Strong Passwords & Best Practices

      A strong password is your first line of defense against unauthorised access. Weak or commonly used passwords are vulnerable to brute-force attacks, where automated tools rapidly try thousands of combinations until they find the correct one. If your password is short, simple, or based on common words or patterns (like "password123"), it can be cracked in seconds.

      Additionally, many attackers rely on a method called credential stuffing, where they use usernames and passwords stolen from one website to try and gain access to other accounts. If you reuse passwords across sites, a breach at one company could put all your accounts at risk. By using unique, complex passwords for each account, you limit the damage if any one service is compromised.

      To create a strong password:

      • Use a combination of uppercase and lowercase letters, numbers, and symbols
      • Make it at least 12 characters long
      • Avoid using easily guessed information, like names, birthdays, or common words; you may consider using a passphrase instead
      • Consider using a password manager to generate and store complex passwords securely

      Why Two-Factor Authentication (2FA) Matters

      Even the strongest password can be stolen—whether through phishing scams, data breaches, or malware. That’s where two-factor authentication comes in. 2FA adds a second layer of security to your login process. After entering your password, you’ll be asked to verify your identity using your chosen 2FA method. If you have both Authenticator App and SMS enabled, the Hometime platform will prioritise the Authenticator App as the recommended method. 

      This extra step makes it much harder for an attacker to access your account, even if they have your password. For example, if a cybercriminal obtains your login credentials but doesn’t have access to your phone or authentication app, they won’t be able to complete the login process.

      2FA is especially important for sensitive accounts such as your Hometime account with personal and financial data.

      While it might seem like a small inconvenience at first, the added protection from 2FA is well worth it. 

      Steps for Setting Up Two-Factor Authentication for Your New Account

      1. Click on the button in the invitation email to get started. Note: The email address that received this invitation email will be the same one you use to login.
      2. Create your password.
      3. Choose your preferred 2FA method.
        1. Authenticator App (Recommended)
          1. Download the free Google Authenticator app to your mobile device (App Store, Google Play Store).
          2. Return to the Hometime website and use your mobile phone’s camera to scan the QR code displayed. Or, if you’re having trouble scanning the QR code, click the link underneath it to access a setup key you can use to Add Account directly in the Google Authenticator App.
          3. Enter the 6-digit verification code presented in the Google Authenticator app into Hometime and click “Verify”.
          4. Once verified, click “Setup my backup key”.
          5. Download and/or copy the backup key. This is required and we recommend saving it in a safe place as you will need it if you ever lose access to your phone.
          6. Once you’ve taken one of the actions above, the “Start using Hometime” button will be enabled. Upon click, you’ll be navigated into the Hometime Homeowner Portal.
        1. Text Message (SMS) 
          1. Enter your mobile number and click "Send code".
          2. You will receive a text message with a 6-digit code on the mobile number you entered. Note, this code is only valid for 3 minutes.
          3. Return to the Hometime website and enter the 6-digit verification code into the fields provided then click "Verify".
          4. If the code is correct and entered within the 3-minute validity window, you'll see a confirmation message and a button to "Start using Hometime". Upon click, you’ll be navigated into the Hometime Homeowner Portal.

      Troubleshooting & Support


      Correct codes are not working

      The Google Authenticator app generates 6-digit codes that are valid for 30 seconds and refresh every 30 seconds. These codes are based on the current time and a shared secret key. They are designed to be a time-based one-time password (TOTP) to add a layer of security to logins.

      The Hometime Platform is designed to allow an additional 30-second buffer. This should mean if you enter a valid code, it will successfully authenticate.

      However, here are three reasons why it might not:

      1. It took longer than the ~60-seconds allotted to enter the valid code before it expired.
        One way to avoid this scenario is to wait until a new code is generated within the Google Auth app then enter it immediately so you have the full ~60 seconds to process it as opposed to opening the app and trying to enter the current code which has less than 30 seconds before it expires.
      2. Your device is not synced to the universal time and therefore the code being generated does not match what the Hometime platform expects.
        1. Why does your phone need the correct time for the Authenticator app to work? The codes in your Authenticator app are based on the current time. If your phone’s time isn’t synced to the universal time, the codes won’t match what our system expects — and you won’t be able to log in.
        2. To fix this: Make sure your phone’s date and time are set automatically. This is typically found within Date & Time settings where you can enable your device to adjust the date and time automatically following time zone and daylight saving time changes.
      3. Your device has automatically redirected you to the wrong authenticator app.
        If you are using an Apple device such as an iPhone and you simply use your camera to take a picture of the QR code then it may automatically launch the Apple Passwords app and try to use that instead of the Google Authenticator app. This means it will trigger codes but those codes won't be recognised by the Hometime platform because we've integrated Google Auth specifically, not Apple's Passwords app. To avoid this, download the free Google Authenticator app, open it and then use it's camera feature to take a picture of the QR code. 

      Temporary Lock & Lock Out

      In order to protect against hackers, the Hometime Platform will only allow a select number of incorrect attempts before temporarily locking the account. If this initial threshold is reached, and there are continued failed attempts then the account will be locked until a Hometime team member can verify the person attempting to access the account is the owner of that account.

      Avoid being locked out but setting up both Authenticator App and SMS as 2FA methods so you have the option to switch if one is problematic.

      If you do experience a lock out, wait for 1 hour before trying to access your account again. If you've gone past the initial threshold, contact support@hometime.io to assist in restoring your access.

      Using a Password Manager

      When you do set up Google Auth, we recommend downloading it to save in a secure place and saving your backup key to your preferred Password Manager. 

      Power User Tip: Your Password Manager may allow you to save your one-time password with your login details. For example, if you're using 1Password for your Password Manager, you can save your one-time password to your 1Password entry by selecting that login item in 1Password, clicking the ellipsis and choosing Scan QR code. Here are more detailed instructions.

      In Summary

      Using strong, unique passwords and enabling two-factor authentication are two of the most powerful steps you can take to secure your digital life and data. They work together to reduce the risk of unauthorised access, protect your personal information and those of the users associated with your Hometime workspace, and give you peace of mind.

      If you haven’t already, we strongly encourage you to:

      1. Update your passwords to meet strong security standards
      2. Enable both 2FA methods on your Hometime account.

      Taking these simple steps can make a big difference in protecting your data and privacy.

       

      Login to the Homeowner Portal by clicking here.