Two-factor authentication (2FA) is a security process in which users provide two different authentication factors to verify themselves. This method adds an extra layer of security to the basic login procedure where only the username and password are required.
Here’s how it generally works:
- Something You Know: The first factor is typically something the user knows, like a password or PIN.
- Something You Have: The second factor is something the user has, such as a mobile phone, which can receive a text message with a unique authentication code, or a hardware token that generates a time-based, one-time code.
How 2FA Helps Users:
- Enhanced Security: By requiring a second form of identification, 2FA makes it significantly more difficult for attackers to gain access to a person's devices or online accounts because knowing the victim's password alone is not enough.
- Protection from Phishing: Even if a user accidentally divulges their password, it is useless without the second factor.
- Reduced Fraud and Identity Theft: 2FA provides an additional barrier and deterrent against identity theft.
- Compliance: For businesses, using 2FA can help them comply with key regulations and standards that mandate enhanced security practices.
Enabling the 2FA can greatly reduce the risk of unauthorized access, ensuring that even if one factor (like a password) is compromised, the presence of a second factor limits the potential for damage.
Step 1: Login to the system by entering the username and password.
Step 2: After logging in, the screen prompts the user to set up two-factor authentication. The user can choose one of two options: "Set up" or "I'll do this later," and then tick "Do not show this message again" only if necessary.
Step 3: Then the "Set Up Authenticate App" screen displays as below. Open the authenticator app (e.g., Google Authenticator) on the mobile device. scan the QR code with the authenticator app or input the key into the app to generate the verification code.
Step 4: Enter the 6-digit verification code shown in the authenticator app and verify.
Step 5: After entering the verification code from the authenticator app, access the backup codes screen. These codes serve as alternatives if the authenticator app fails. Each code is usable once and generating a new set deactivates the old set.
Step 6: You can download/copy the backup codes from here, as shown in the screenshot below.
Step 7: You can Re-generate the backup codes from here, as shown in the screenshot below.
Step 8: Click 'Done.' After that, the system navigates to the home/dashboard screen.
How to obtain new backup codes
Step 9: Go to the My Settings > Two-Factor Authentication
Step 10: If the user wants to obtain new backup codes, they should click on 'Get new backup codes,' as shown on the screen below.
Step 12: If the user wants to manage the backup codes, they should click the 'Manage' button, where the reset and disable buttons appear.
Step 13: Click the reset button to reset the backup codes. A confirmation message pops up as shown below. Click "Yes, Reset" to proceed.
Step 14: Then the "Set Up Authenticate App" screen displays as below. Open the authenticator app (e.g., Google Authenticator) on the mobile device. scan the QR code with the authenticator app or input the key into the app to generate the verification code.
Step 15: Enter the 6-digit verification code shown in the authenticator app and verify.
Step 16: After entering the verification code from the authenticator app, access the backup codes screen. These codes serve as alternatives if the authenticator app fails. Each code is usable once, and generating a new set deactivates the old set. You can download, copy, or re-generate the backup codes from here, as shown in the screenshot below.