Two Factor Authentication

What is Two-Factor Authentication?

Two-factor authentication adds an additional layer of security by introducing a second step to your login. It takes something you know (i.e.: your password), and adds a second factor, typically something you physically have (such as your phone). Since both are required to log in, in the event an attacker obtains your password two-factor authentication would stop them for accessing your account.

Why do you need it?

Passwords are increasingly easy to compromise. They can often be guessed or leaked, they usually don’t change very often, and despite advice otherwise, many of us have favorite passwords that we use for more than one thing. So Two-factor authentication gives you additional security because your password alone no longer allows access to your account.

How does it work?

One of the most common and simplest to use is time based one-time passwords. With these, in addition to your regular username & password, you also have to enter a 6 digit code that changes every 30 seconds. Only your token device (typically a mobile smartphone) will know your secret key, and be able to generate valid one time passwords for your account. And so your account is far safer.

Time Based Tokens work with any OATH software such as Google Authentication for Android, or Apple’s OATH Token App for example.
Once activated, users will be required to provide a second form of Authentication that only they have access to. This Authentication comes
in the form of a 6 digit passcode that expires every 30 seconds.

How does it work?

As standard Two-Factor Authentication is not enabled. To activate login to the Control Panel using your username and password. Look to the top right hand corner of the Control Panel and you will see Hello usually followed by your name. When you select you will see a dropdown menu, select security settings. In the middle of the page you will see Two-Factor Authentication, click to enable. Click Get Started and you will be presented with a QR code to scan using a smartphone or tablet device.

Once this is scanned, your device will then store authorization to generate a pass code and authentication to your Control Panel.
Every 30 seconds, a new 6 digit code will be generated through the application of choice which will be used as second form
of Authentication during login to your Control Panel.

Why do I need this?

Many individuals tend to use the same password for all of their login points. In the event that a malicious users gains access to one
login of you or your staff, they could potentially gain access to all other login-required sites – Like your Control Panel.

Two-Factor Authentication puts a stop to that by requiring users who successfully login in with a user & password combination to use
a physical device they posses for further verification.