Two-factor authentication (also referred to as, 2FA) is used to ensure a secure login by requiring verification when logging in.
A 2FA application is required, for example, Google Authentication or FreeOTP.
Enabling two-factor authentication
- Go to the Main Menu at the top right of your screen and select User Settings > Two-factor Authentication.
- The Two-factor Authentication window opens.
Change the status of two-factor authentication to enabled by clicking the red Disabled button. The button will now display as Enabled and will be green. Click Save.
- You will need to add your personal token to your 2FA application. This is done by scanning your personal token's QR code in XRay from your 2FA application. Click the QR button to display your QR code.
Scan this code using your 2FA application.
- From this point forward the user will now be required to enter a 6-digit code from the 2FA application when logging in.
Disabling two-factor authentication
A user can disable two-factor authentication by simply clicking the green Enabled button. It will change to red and will display Disabled.
Disabling two-factor authentication from admin level
Users with administrative roles can disable 2FA for a user. Perform the following steps.
- Go to the Main Menu at the top right of your screen and select Admin Settings.
- The Admin Settings window opens. Select the Organization tab on the left side of the window.
- The Organization Manager window opens. Select the Users tab from the left side of the window. Select the user you need to reset two-factor authentication for and click Edit.
- On the next screen, click the Reset two-factor authentication button.
- 2FA is now disabled for this user.